The new case involving Chrome extensions that inject malicious code into JS libraries (like jQuery) is a prime example of what is known as a 'Supply Chain Attack.' The hackers utilized a legitimate-looking infrastructure, complete with integrated payment systems (Alipay/WeChat Pay), to build trust while exfiltrating API keys and session cookies every five minutes.

Read the entire story from December 23, 2025 here https://thehackernews.com/2025/12/two-chrome-extensions-caught-secretly.html

For more information follow the Science and Research Institute: https://www.linkedin.com/feed/update/urn:li:activity:7413258032882733056

03 яну 2026