Browser extension malware infected 8.8M users in DarkSpectre attack

Browser extensions turned malicious after years of legitimate operation in DarkSpectre campaign affecting millions. The threat group hid malware in image files.
CSOonline

AI browsers can be tricked with malicious prompts hidden in URL fragments

Researchers discovered that adding instructions for AI-powered browser assistants after the hash (#) symbol inside URLs can influence their behavior to leak sensitive data and direct users to phishing ...