Tag
browser-extension-security
Safeguard articles tagged "browser-extension-security" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Threat Intelligence
Malicious browser and IDE extensions (Chrome, Firefox, VS...
How the Cyberhaven Chrome extension breach and the GlassWorm Open VSX worm exposed a supply chain blind spot that dependency scanners like Socket.dev don't cover.
May 9, 20266 min read
Industry Analysis
WebExtension vulnerabilities in React DevTools and Vue.js DevTools
CVE-2023-5654 and CVE-2023-5718 exposed 5M+ React and Vue devtools users to postMessage flaws. Here's how devtools extensions became supply chain risk.
Apr 28, 20267 min read
Application Security
Browser extension security risks for developers
Cyberhaven's Chrome extension breach hit 400,000 users in hours. Here's how attackers hijack trusted extensions, and how to detect the risk before it spreads.
Apr 28, 20267 min read