Updated on 2022-11-09
Cloud9, a new Chrome browser-based botnet, was found leveraging malicious extensions to pilfer online accounts, inject malicious JavaScript code and ads, log keystrokes, and enroll the victim’s browser in DDoS attacks. Read more: Malicious extension lets attackers control Google Chrome remotely
Overview
Zimperium researchers took a deep dive into Cloud9, a malicious Chrome extension spread via third-party websites that, once it infects users’ browsers, can steal cookie files, keystrokes, and browser session data but can also deploy other malware on the infected system. Read more: The Case of Cloud9 Chrome Botnet