microsoft caught a fake perplexity chrome extension that was logging every search and address bar keystroke.
the malicious extension posed as “search for perplexity ai” and routed queries plus typed characters through an attacker-controlled server before sending users to real results.
it set itself as default search and grabbed browser headers and ip data too.
google yanked it from the store after microsoft’s disclosure. no password theft spotted but plenty of sneaky data collection.
how many shady extensions are still hiding in your browser right now?
Jun 30
at
1:12 AM
Relevant people
Log in or sign up
Join the most interesting and insightful discussions.