← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Targeted supply chain attack against Chrome browser extensions - Sekoia.io Blog
WHITE CyberHunter_NL 2025-01-29 Modified: 2025-02-28
76
IOCs
HIGH VOLUME
A security firm, Sekoia, has uncovered a supply chain attack against Chrome browser extensions, which it believes may have been carried out since at least 2023 and possibly even earlier, according to its analysis.
chromedecemberchrome webstorec2 servercyberhavenchatgpturlspost requestchrome browserfacebookphishingrequiresjohnstealcvidarraccoon
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
Indicators of Compromise (3 / 76 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain email
TYPEINDICATORDESCRIPTIONCREATED
URL https://app.checkpolicy.site/accept-terms-policy?e=victim@example.com 2025-01-29
URL https://app.checkpolicy.site/extension-privacy-policy?e=victime@example.com 2025-01-29
URL https://graphqlnetwork.pro/ai-graphqlnetwork 2025-01-29
References (1)
↗ https://blog.sekoia.io/targeted-supply-chain-attack-against-chrome-browser-extensions/#h-compromised-extensions