ShellCodeX
Tools • Events • News • Insights
ShellCodeX Intelligence Brief
HIGH Cybersecurity

Adblock for YouTube extension allows dormant arbitrary script injection

Source headline: Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability

Threat level High
Signal strength 75/100
Source confidence 1 source
Published 2 hours ago

Intelligence Summary

A popular Chrome extension used to block YouTube ads has been found to support dormant arbitrary JavaScript execution. The extension, “Adblock for YouTube” (cmedhionkhpnakcndndgjdbohmhepckk), has 10M+ installs and a Featured badge on the Chrome Web Store. The discovered functionality indicates the code can potentially be triggered later to run attacker-controlled scripts. This increases the risk of browser compromise and user data exposure, especially if the extension is abused or later modified. Users should review extension permissions, consider removal, and keep Chrome and extensions updated.

Recommended Action

Review affected assets, schedule urgent remediation, and monitor related indicators.

Topics

#supply-chain #chrome #adblocker #extension #script-injection #youtube
Original reporting The Hacker News Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability
Open original source

Related Pulse Signals

View all signals
High · Cybersecurity Bluekit phishing kit adds browser-in-the-middle to steal login data High · Cybersecurity Smart TV proxyware, AI crime forums, and a 24-year-old curl bug roundup Medium · Cybersecurity Cal Water Investigation Finds No OT Impact After Handala Water Supply Claims Medium · Cybersecurity Richard Bejtlich argues for stronger NDR evidence beyond alert triage