A malicious extension in the Chrome Web Store is masquerading as the Perplexity AI answer engine, intercepting search traffic and collecting browsing information. [...]
The proliferation of AI tools is creating new vectors for malicious actors to exploit user trust through impersonation and social engineering, targeting popular new services like Perplexity AI.
This incident highlights the increasing security risks associated with the rapid adoption of AI services, particularly in browser extensions, and the need for enhanced vigilance from users and platform providers alike.
The incident reinforces that the 'human layer' remains a critical vulnerability, even as AI tools become more sophisticated, leading to a potential increase in scrutiny for AI-related software security.
- · Cybersecurity firms
- · Browser security teams
- · AI ethics researchers
- · Perplexity AI
- · Chrome Web Store reputation
- · Users of malicious extensions
- · Developers of legitimate AI extensions
Users of the fake extension had their search data and browsing information intercepted.
Increased scrutiny and more stringent review processes for AI-related extensions on platforms like the Chrome Web Store.
Enhanced user education campaigns about identifying and avoiding sophisticated phishing and impersonation tactics targeting emerging technologies like AI.
This signal links to a primary source. Continuum Brief monitors and indexes it as part of the live intelligence stream — we do not republish source content.
Read at BleepingComputer