Malicious GhostPoster browser extensions found with 840,000 installs

Another set of 17 malicious extensions linked to the GhostPoster campaign has been discovered in Chrome, Firefox, and Edge ...
GitHub

Extra Life API wrapper for JavaScript in the browser and Node.js.

There are two ways to use this module in the browser. The first way is to import it into your project that will be transpiled. The second way is to include the raw extra-life.js file from this package ...
Security Boulevard

NDSS 2025 – Exploiting the Complexity Of Modern CSS For Email And Browser Fingerprinting

Leon Trampert (CISPA Helmholtz Center for Information Security), Daniel Weber (CISPA Helmholtz Center for Information Security), Lukas Gerlach (CISPA Helmholtz Center for Information Security), ...
The Hacker News

DarkSpectre Browser Extension Campaigns Exposed After Impacting 8.8 Million Users Worldwide

The threat actor behind two malicious browser extension campaigns, ShadyPanda and GhostPoster, has been attributed to a third attack campaign codenamed DarkSpectre that has impacted 2.2 million users ...
GitHub

Browser Password Extraction Tool

This project is a Python-based tool that retrieves and decrypts stored passwords from various web browsers on a Windows machine. The decrypted passwords are saved into a CSV file for further use or ...