Islamabad, Feb 18: The National Telecommunication and Information Security Board (NTISB) has issued a critical cybersecurity alert warning users of a sophisticated attack campaign targeting popular browser extensions. Hackers have successfully compromised several widely used extensions to steal sensitive personal information and credentials from platforms such as social media and banking sites.
The attack is carried out using malicious code delivered through phishing tactics, which allows cybercriminals to hijack legitimate browser extensions and access confidential user data. The NTISB’s advisory highlights that at least 16 commonly used browser extensions have been compromised, including AI-powered tools and others.
Read More:
OpenAI Uncensors ChatGPT to Allow Responses to More Controversial Questions
Among the affected extensions are:
- AI Assistant – ChatGPT and Gemini for Chrome
- Bard AI Chat Extension
- GPT-4 Summary with OpenAI
- VPNCity and Internxt VPN
- Vidniz Flex Video Recorder and VidHelper Video Downloader
The advisory also lists extensions related to bookmarking, voice services, reading modes, and automation tools as part of the compromised list.
In response to these threats, the NTISB recommends several best practices for users to protect themselves. First and foremost, users should stop using the identified compromised extensions and opt for reputable alternatives. It is crucial to install only trusted extensions, check their ratings, and thoroughly review requested permissions before granting them. Limiting permissions wherever possible can also significantly reduce security risks.
For added protection, users are encouraged to keep all browser extensions up-to-date and remove any that are not actively in use. The use of licensed antivirus software is strongly recommended to detect and block any malicious activities. Additionally, users should exercise caution when installing free extensions, as they may pose higher security risks.
Continuous monitoring of system activity is also essential. Users should remain vigilant for any unusual behavior, such as unauthorized access or unexpected data usage, which may indicate a security breach.
By following these cybersecurity guidelines, users can better protect their sensitive data from emerging online threats. The NTISB emphasizes the importance of staying informed and practicing safe browsing habits to defend against these growing cyberattacks.
