ShadyPanda abused browser extensions for seven years, turning 4.3M installs into a multi-phase surveillance and hijacking ...

A seven-year browser extension campaign has infected 4.3 million Chrome and Edge users. The group responsible, tracked as ...

A malicious extension campaign hit 4.3M users. See how ShadyPanda worked and the steps you should take to protect your browser and data.

Browser extensions can turn bad. As Koi Security outlines, ShadyPanda started out as an affiliate scam, with 145 extensions ...

A long running malware operation that has evolved over several years has been turning browser extensions in Chrome and Edge ...

The China-based cyber-threat group has been using malicious extensions on the Google Chrome and Microsoft Edge marketplaces ...

ShadyPanda spent seven years uploading trusted Chrome and Edge extensions, later weaponizing them for tracking, hijacking, and remote code execution. Learn how the campaign unfolded.

A threat actor has published over a hundred malicious extensions that can track and profile Chrome and Microsoft Edge users ...

More than 4 million browsers have been infected by a China-based threat actor that published browser extension apps as a ...

A massive “sleeper” malware campaign has infected over 4.3 million users through seemingly legitimate browser extensions.

According to researchers at cybersecurity firm Koi, a China-based hacking syndicate known as ShadyPanda is actively ...

A threat group dubbed ShadyPanda exploited traditional extension processes in browser marketplaces by uploading legitimate extensions and then quietly weaponization them with malicious updates, ...