ShellCodeX
Tools • Events • News • Insights
ShellCodeX Intelligence Brief
HIGH Cybersecurity

Malicious Perplexity-lookalike Chrome extension exfiltrates searches via proxy

Source headline: Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input

Threat level High
Signal strength 75/100
Source confidence 1 source
Published 2 hours ago

Intelligence Summary

Microsoft identified a malicious Chrome extension impersonating the AI search engine Perplexity. The add-on intercepted users’ searches and even keystrokes entered in the browser address bar. Queries were routed through an attacker-controlled server before users were redirected to legitimate results. This behavior can expose sensitive information such as queries, URLs, and other typed data. Google removed the extension from the Chrome Web Store after responsible disclosure.

Recommended Action

Review affected assets, schedule urgent remediation, and monitor related indicators.

Topics

#supply-chain #keystroke-logging #browser-privacy #chrome-extension #search-exfiltration
Original reporting The Hacker News Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input
Open original source

Related Pulse Signals

View all signals
High · Cybersecurity Leaked iPhone 18 Pro drop-test photos and parts lists posted on dark web High · Cybersecurity Warren and Scanlon propose limits on brokers selling health and location data High · Cybersecurity Weekly threat roundup: Linux kernel local flaws, AI malware, Turla backdoor Medium · Cybersecurity Proception resolves Tesla trade secret dispute and raises $11M for robotics