Hackers Hijack Popular Chrome Extension to Inject Code into Web Developers’ Browsers
by Graham Cluley | Aug 3, 2017
“Web Developer” is a popular extension that adds various web developer tools to a variety of browsers.
Unfortunately, the fact that the Chrome edition of the Web Developer extension has over one million users has also made its author – San Francisco-based Chris Pederick – a target for attack. …Pederick fell for the simplest and oldest trick in the book: a phishing attack.
…
A new version of Web Developer for Chrome has since been made live, removing the compromised code. Users are advised by Pederick to update immediately.
Anyone who was running the compromised extension should consider changing any passwords that they have entered as well as wiping any login tokens and cookies used on sites they visited during the infection period.
Read the full article here
