Updated on 2022-11-25: Malicious Chrome extensions
Google has removed two Roblox-themed Chrome extensions from the official Web Store after it discovered that recent updates deployed malicious code inside users’ browsers that stole their Roblox account credentials. The incident appears to be linked to several reports from Roblox users who had some of their game inventory got stolen over the past few days. More than 200,000 users installed the extensions. Read more: Backdoored Chrome extension installed by 200,000 Roblox players
Updated on 2022-11-24
SearchBlox, a Chrome browser extension, was found containing a backdoor that can pilfer Roblox credentials and Rolimons assets. It has been installed over 200,000 times. Read more: Backdoored Chrome extension installed by 200,000 Roblox players
Overview
Group-IB found that at least 34 unique Russian-speaking threat actors have stolen 50,350,000 account passwords from 896,000 infections from January to July. Read more: Professional stealers: opportunistic scammers targeting users of Steam, Roblox, and Amazon in 111 countries