← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
IOC - That AI Extension Helping You Write Emails? It’s Reading Them First
Leveraging the rise of generative AI (GenAI), these extensions deliver remote access Trojans (RATs), meddler-in-the-middle (MitM) attacks and infostealers that target prompts, user behavior and browser sessions. Attackers blend the following established techniques with AI productivity lures
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| IPv4 | 158.160.66.115 | CC=RU ASN=AS200350 yandex.cloud llc | 2026-05-06 | |
| IPv4 | 199.80.55.27 | CC=US ASN=AS40824 wz communications inc. | 2026-05-06 | |
| URL | http://199.80.55.27:3130 | — | 2026-05-06 | |
| URL | http://api.reverserecruiting.io/ | — | 2026-05-06 | |
| URL | http://banana.summarizer.one/quota | — | 2026-05-06 | |
| domain | browser.cash | — | 2026-05-06 | |
| domain | chatgptforchrome.com | — | 2026-05-06 | |
| domain | gosupersonic.email | — | 2026-05-06 | |
| domain | notionapp.cn | — | 2026-05-06 | |
| domain | pic-editor-chromeextension.uno | — | 2026-05-06 | |
| domain | vomet.ru | — | 2026-05-06 | |
| domain | xuix.top | — | 2026-05-06 | |
| hostname | api.reverserecruiting.io | — | 2026-05-06 | |
| hostname | banana.summarizer.one | — | 2026-05-06 | |
| hostname | mcp-browser.qubecare.ai | — | 2026-05-06 |