Several extensions had also gained featured or verified status in both marketplaces, raising further concerns about the platforms’ screening processes.
Koi Security recommends that affected users uninstall the extensions immediately, clear browser data to remove tracking identifiers, run a full malware scan, and monitor online accounts for unusual activity. A full review of installed extensions is also advised.
The known malicious extensions include “Color Picker, Eyedropper — Geco colorpick,” “VPN Proxy to Unblock Discord Anywhere,” “Emoji keyboard online — copy&paste your emoji,” “Free Weather Forecast,” “Unlock Discord,” “Dark Theme — Dark Reader for Chrome,” “Volume Max — Ultimate Sound Booster,” “Unblock TikTok — Seamless Access with One-Click Proxy,” “Unlock YouTube VPN,” “Unlock TikTok,” and “Weather.”
