← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Targeted supply chain attack against Chrome browser extensions - Sekoia.io Blog
WHITE CyberHunter_NL 2025-01-29 Modified: 2025-02-28
76
IOCs
HIGH VOLUME
A security firm, Sekoia, has uncovered a supply chain attack against Chrome browser extensions, which it believes may have been carried out since at least 2023 and possibly even earlier, according to its analysis.
chromedecemberchrome webstorec2 servercyberhavenchatgpturlspost requestchrome browserfacebookphishingrequiresjohnstealcvidarraccoon
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
Indicators of Compromise (2 / 76 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain email
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA1 25c2714c758042a402c9c946da10505367358531 SHA1 of d303047205dabec8e2d34431e920ebe3478ca80a18f57bf454da094aca0e10aa 2025-01-29
FileHash-SHA1 cb612c82f8c81ab607ee5ed86598ea3b7d472993 SHA1 of b0827dc54349b10098a7370ada4ea44ba668b264ccca2db5676be1c32e6cc154 2025-01-29
References (1)
↗ https://blog.sekoia.io/targeted-supply-chain-attack-against-chrome-browser-extensions/#h-compromised-extensions