The Malawi Computer Emergency Response Team (Malawi CERT) cautions against a concerning cybersecurity trend where malicious browser add-on extensions are being used to steal personal data from unsuspecting users. A recent example is the fake ChatGPT-branded Chrome browser extension, identified as a tool used by cybercriminals to hijack Facebook accounts and compromise users’ personal information. These malicious extensions often masquerade as legitimate software and claim to offer useful functionalities, but once installed, they can gain unauthorized access to users’ personal data.
To safeguard against such threats, Malawi CERT advises being vigilant when installing browser add-on extensions, only downloading from reputable sources, regularly reviewing and removing suspicious extensions, and keeping your software and browsers up to date with the latest security patches.