Also, malicious AI Chrome extensions have stolen data from over 900,000 users. Also, your browser might be at risk right now. If you use ChatGPT, DeepSeek, or any AI tool through a Chrome extension, you need to read this right now. hackers are hiding data-stealing malware as helpful AI browser tools. Also, the scale of this attack is alarming. Let me walk you via what happened, how to check if you are affected. Also, exactly how to protect you.
So, this is key.
Yet, it is true.
So, this is key.
Hence, act now.
Thus, be safe.
Estimated reading time: 9 minutes
Still, read on.
Then, dig in.
Yet, it is true.
Next, take note.
Plus, it is real.
Key Takeaways About Malicious AI Chrome Extensions
- 900,000 users affected - Two malicious AI Chrome extensions stole ChatGPT and DeepSeek conversations along with all browsing data from nearly a million users.
- 67% of AI extensions collect data - Research shows that two-thirds of AI Chrome extensions actively harvest user data beyond what they need.
- Gemini panel hijack discovered - A critical Chrome weak spot allowed malicious extensions to take control of Google's Gemini AI assistant, accessing cameras and microphones.
- Simple safety steps exist - Reviewing your put in extensions, checking rights. Also, using browser safety settings can prevent most attacks.
Table of Contents
- What Happened With Malicious AI Chrome Extensions
- How Malicious AI Chrome Extensions Steal Your Data
- The Chrome Gemini Panel weak spot Explained
- How to Check If You Are Affected
- How to Protect Yourself From Malicious AI Chrome Extensions
- The Broader Chrome Extension Threat Landscape in 2026
What Happened With Malicious AI Chrome Extensions
Moreover, two fake AI Chrome extensions racked up over 900,000 downloads before safety researchers caught them. According to SecurityWeek, the extensions were named "Chat GPT for Chrome with GPT-5, Claude Sonnet and DeepSeek AI" with 600,000 users, and "AI Sidebar with Deepseek, ChatGPT, Claude and more" with 300,000 users.
So, be wise.
Yet, there is more.
Hence, act now.
Hence, take care.
Thus, be bold.
Also, these were not random low-quality extensions. They looked real, had positive reviews. Also, even provided some AI functionality. Yet behind the scenes, they were silently exfiltrating every conversation you had with ChatGPT and DeepSeek. The stolen data was sent to attacker-controlled servers every 30 minutes.
Still, it is bad.
Then, move on.
Thus, be safe.
Next, check this.
Plus, be smart.
In addition, have you ever set up a Chrome extension without carefully reading its access? Most people do. That is just what hackers count on. In my time working with safety tools, the most dangerous threats are the ones that look fully normal.
So, watch out.
Yet, stay calm.
Still, read on.
Hence, go on.
Thus, step up.
How Malicious AI Chrome Extensions Steal Your Data
As a result, get the attack method helps you spot similar threats in the future. These malicious AI Chrome extensions used several clever techniques to avoid detection while harvesting massive amounts of data.
So, this is key.
Yet, it is true.
Then, dig in.
Hence, act now.
Thus, be safe.
Malicious AI Chrome Extensions and Data Exfiltration
Consequently, the extensions ran background scripts that captured all open tab URLs and AI conversation content. According to OX safety, the malware transmitted this data to remote command and control servers at regular 30-minute intervals. Also, the data grab happened silently without any visible indicators to the user.
Still, read on.
Then, dig in.
Next, take note.
Next, take note.
Plus, it is real.
How Malicious AI Chrome Extensions Abuse Permissions
In fact, research from Dataprise found that AI extensions are 60% more real to have flaws than regular extensions. They are also 3 times more real to access cookies, 2.5 times more real to execute remote scripts, and 6 times more real to have increased their access over time. These statistics paint a concerning picture of the AI extension ecosystem.
So, be wise.
Yet, there is more.
Plus, it is real.
Hence, take care.
Thus, be bold.
Malicious AI Chrome Extensions and Corporate Espionage
Indeed, the stolen data goes far beyond personal conversations. Groups whose employees set up these extensions may have unknowingly exposed intellectual property, customer data. Also, confidential business info. Indeed, many pros use AI tools to draft emails, analyze business data. Also, brainstorm strategies. All of that content was captured and sent to hackers. For groups looking to strengthen their defenses, our guide on best EDR tools for small business covers essential protection strategies.
Still, it is bad.
Then, move on.
So, be wise.
Next, check this.
Plus, be smart.
The Chrome Gemini Panel Vulnerability Explained
namely, a separate but equally alarming discovery showed that bad extensions could hijack Google's own AI assistant. Palo Alto Networks Unit 42 researchers found a flaw that allowed Chrome extensions to seize control of the Gemini Live panel built into Chrome.
So, watch out.
Yet, stay calm.
Yet, there is more.
Hence, go on.
Thus, step up.
How the Gemini Hijack Works
Notably, the flaw allowed bad extensions to escalate their privileges via the Gemini panel. Once hijacked, hackers could access the victim's camera and microphone via Gemini's access. This is very frightening because users trust Google's built-in AI features and would never suspect their own browser's AI panel is at risk.
So, this is key.
Yet, it is true.
Hence, take care.
Hence, act now.
Thus, be safe.
Why Built-In AI Features Create New Attack Surfaces
For example, as browsers integrate more AI capabilities directly, each new feature becomes a real target. In contrast to traditional browser attacks that target web pages, these attacks exploit the trust relationship between the browser and its built-in tools. Of course, Google patched this specific flaw. Yet, it highlights a growing trend. Sound familiar? It is the same pattern we see with zero trust safety where you cannot trust anything by default.
Still, read on.
Then, dig in.
Thus, be bold.
Next, take note.
Plus, it is real.
How to Check If You Are Affected
In particular, right now, open a new tab and type chrome://extensions/ to review what is set up in your browser. Here is a step-by-step process to check if malicious AI Chrome extensions have at risk your data.
So, be wise.
Yet, there is more.
Still, it is bad.
Hence, take care.
Thus, be bold.
Step 1: Review All Installed Extensions
Similarly, navigate to chrome://extensions/ and look at every extension set up. Remove anything you do not spot or no longer use. Pay special attention to AI-related extensions. If you see either "Chat GPT for Chrome with GPT-5" or "AI Sidebar with Deepseek," remove them right now and change your passwords.
Still, it is bad.
Then, move on.
Then, move on.
Next, check this.
Plus, be smart.
Step 2: Check Extension Permissions
Meanwhile, click "Details" on each left extension and review its access. Be shady of any extension that requests access to "Read and change all your data on all websites." real AI extensions should not need this level of access. Hence, if an AI tool asks for more access than it needs for its stated purpose, that is a red flag.
So, watch out.
Yet, stay calm.
Next, check this.
Hence, go on.
Thus, step up.
Step 3: Monitor Your AI Accounts
Therefore, log into your ChatGPT, DeepSeek. Also, other AI accounts. Check for unusual activity or sessions you do not spot. Change your passwords and enable two-factor login if you have not already. For a deeper get of account safety, check our guide on IAM best practices.
So, this is key.
Yet, it is true.
Plus, be smart.
Hence, act now.
Thus, be safe.
How to Protect Yourself From Malicious AI Chrome Extensions
Of course, prevention is always better than recovery when it comes to browser safety. Follow these practical steps to keep your browser safe from malicious AI Chrome extensions going forward.
Still, read on.
Then, dig in.
So, watch out.
Next, take note.
Plus, it is real.
Only Install Extensions From Verified Publishers
After all, check the publisher name and website before installing any extension. Verified publishers have a blue checkmark next to their name in the Chrome Web Store. Still, even verified publishers can be at risk. So, always verify via the official website of the tool you want to use.
So, be wise.
Yet, there is more.
Yet, stay calm.
Hence, take care.
Thus, be bold.
Use Minimal Permissions Approach
For this reason, restrict extension site access to only the websites where you need them. In Chrome settings, you can change an extension's site access from "On all sites" to "On specific sites" or "On click." This dramatically limits what data an extension can access. Above all, never grant an extension more access than it absolutely needs.
Still, it is bad.
Then, move on.
Hence, go on.
Next, check this.
Plus, be smart.
Enable Chrome Enhanced Safe Browsing
Most importantly, go to Chrome Settings, then Privacy and safety, then Safe Browsing. Also, select "better protection." This enables real-time protection against dangerous sites, downloads. Also, extensions. According to USF IT safety, this feature a lot reduces the risk of installing bad extensions.
So, watch out.
Yet, stay calm.
Thus, step up.
Hence, go on.
Thus, step up.
Regular Security Audits
Set a monthly reminder to review your set up extensions. Remove anything you have not used recently. In fact, treating your browser extensions like apps on your phone helps maintain good safety hygiene. What would you do if you found an extension you do not note installing?
So, this is key.
Yet, it is true.
Still, take heed.
Hence, act now.
Thus, be safe.
The Broader Chrome Extension Threat Landscape in 2026
Essentially, the 900,000 user incident is just the tip of the iceberg. The Chrome extension ecosystem faces systemic safety challenges that every user should get.
Still, read on.
Then, dig in.
Then, look here.
Next, take note.
Plus, it is real.
37.4 Million Users Affected by Malicious Extensions
Also, according to The Dupree Report, over 37.4 million users were affected by bad Chrome extensions in recent campaigns. About 27.2 million users set up 153 extensions that leaked browser history upon installation. These numbers show this is not an isolated problem but a widespread ecosystem flaw.
So, be wise.
Yet, there is more.
Next, stay safe.
Hence, take care.
Thus, be bold.
Supply Chain Attacks Are Increasing
Moreover, hackers are increasingly targeting extension developers rather than users directly. By compromising a developer's account, they can push bad updates to all existing users. This is similar to the recent supply chain attacks in cloud setups where trusted update channels become attack vectors. For a broader perspective on how hackers operate, read our coverage of task Synergia III.
Still, it is bad.
Then, move on.
Plus, dig in.
Next, check this.
Plus, be smart.
AI Extensions Demand More Permissions
AI extensions inherently need more access to function because they analyze page content and interact with AI APIs. This makes them perfect camouflage for malware. As a result, users need to be extra cautious when installing AI-related browser extensions compared to simpler tools like ad blockers or password managers.
So, watch out.
Yet, stay calm.
So, it is clear.
Hence, go on.
Thus, step up.
Timeline of Malicious AI Chrome Extensions Attacks in 2026
The wave of malicious AI Chrome extensions attacks in 2026 reveals a disturbing pattern of escalation. In January, researchers at OX safety first found the two extensions stealing ChatGPT and DeepSeek conversations from 900,000 users. By February, a broader investigation uncovered 300 additional bad extensions affecting over 37.4 million users. The attacks continued to evolve throughout early 2026.
So, this is key.
Yet, it is true.
Yet, act now.
Hence, act now.
Thus, be safe.
In March, Palo Alto Networks Unit 42 disclosed the Chrome Gemini panel flaw that allowed extensions to hijack Google's AI assistant. This discovery raised the stakes a lot because it showed hackers could access device hardware via browser extensions. Meanwhile, Google removed hundreds of flagged extensions from the Chrome Web Store. Yet, new ones continued to appear.
Still, read on.
Then, dig in.
Hence, be wise.
Next, take note.
Plus, it is real.
The pattern is clear. hackers are namely targeting AI users because they tend to share private info via AI conversations. Corporate setups face the highest risk since employees routinely paste proprietary code, business strategies. Also, customer data into AI chat tools. For groups looking to implement proper safety frameworks, get SOC analyst responsibilities becomes critical in detecting these threats early.
So, be wise.
Yet, there is more.
Thus, take note.
Hence, take care.
Thus, be bold.
Malicious AI Chrome Extensions Summary
Malicious AI Chrome extensions have stolen data from over 900,000 users by hiding malware as helpful AI browser tools. With 67% of AI extensions getting user data and a critical Gemini panel flaw discovered, browser safety has never been more key. protect you by auditing set up extensions, restricting access, enabling better Safe Browsing. Also, only installing from verified publishers.
Still, it is bad.
Then, move on.
Still, watch out.
Next, check this.
Plus, be smart.
What Are Malicious AI Chrome Extensions?
Malicious AI Chrome extensions are browser extensions that pretend to offer AI features like ChatGPT or DeepSeek access but secretly steal your browsing data, AI conversations. Also, personal info. They send this data to attacker-controlled servers.
So, watch out.
Yet, stay calm.
Then, be sharp.
Hence, go on.
Thus, step up.
How Do I Know If My Chrome Extensions Are Safe?
Check the publisher verification status in the Chrome Web Store, review requested access carefully. Also, research the extension via its official website. Remove any extension that asks for excessive access or that you do not spot.
So, this is key.
Yet, it is true.
Next, look out.
Hence, act now.
Thus, be safe.
Can Malicious Extensions Access My Passwords?
Yes, extensions with broad access can access form data with passwords, cookies. Also, session tokens. This is why limiting extension access and using a dedicated password manager is critical for browser safety.
Still, read on.
Then, dig in.
Plus, be safe.
Next, take note.
Plus, it is real.
Should I Stop Using AI Chrome Extensions Entirely?
Not necessarily. Use only popular, verified extensions from reputable companies. Access AI tools directly via their official websites when possible. Limit extension access and conduct regular safety reviews of all set up extensions.
So, be wise.
Yet, there is more.
So, do not wait.
Hence, take care.
Thus, be bold.
Editorial Disclosure: This article was researched and drafted with AI assistance, then reviewed, fact-checked, and edited by Bhanu Prakash to ensure accuracy and provide hands-on insights from real-world time.
Still, it is bad.
Then, move on.
Yet, check it.
Next, check this.
Plus, be smart.
About the Author
Bhanu Prakash is a safety and cloud computing professional with hands-on time in browser safety and threat analysis. He shares practical guides and career advice at ElevateWithB.
So, watch out.
Yet, stay calm.
Hence, stay safe.
Hence, go on.
Thus, step up.
What to Read Next: Check out our guide on Zero Trust Security Guide to understand why you should never trust anything by default.
So, this is key.
Yet, it is true.
Thus, move fast.
Hence, act now.
Thus, be safe.
Related Articles
- Best EDR Tools for Small Business 2026
- web safety Career India 2026
- What Is a Firewall Beginners Guide
Still, read on.
Then, dig in.
Still, be bold.
Next, take note.
Plus, it is real.
