Jaime Blasco
@jaimeblascob.bsky.social
Cofounder and CTO at Nudge Security. Ex-AlienVault. Talking about AI, Threat Intel, SaaS security
Other domains that that might targeting other chrome extensions:
bookmarkfc[.]info
vpncity[.]live
castorus[.]info
parrottalks[.]info
primusext[.]pro
censortracker[.]pro
uvoice[.]live
iobit[.]pro
moonsift[.]store
yujaverity[.]info
wayinai[.]live
readermodeext[.]info
policyextension[.]info
bookmarkfc[.]info
vpncity[.]live
castorus[.]info
parrottalks[.]info
primusext[.]pro
censortracker[.]pro
uvoice[.]live
iobit[.]pro
moonsift[.]store
yujaverity[.]info
wayinai[.]live
readermodeext[.]info
policyextension[.]info
December 27, 2024 at 1:11 AM
Other domains that that might targeting other chrome extensions:
bookmarkfc[.]info
vpncity[.]live
castorus[.]info
parrottalks[.]info
primusext[.]pro
censortracker[.]pro
uvoice[.]live
iobit[.]pro
moonsift[.]store
yujaverity[.]info
wayinai[.]live
readermodeext[.]info
policyextension[.]info
bookmarkfc[.]info
vpncity[.]live
castorus[.]info
parrottalks[.]info
primusext[.]pro
censortracker[.]pro
uvoice[.]live
iobit[.]pro
moonsift[.]store
yujaverity[.]info
wayinai[.]live
readermodeext[.]info
policyextension[.]info
There is code to receive commands from the malicious domain:
December 27, 2024 at 1:11 AM
There is code to receive commands from the malicious domain:
including internxtvpn[.]pro
The extension dpggmcodlahmljkhlmpgpdcffdaoccni - Internxt VPN chromewebstore.google.com/detail/inter... was updated December 25th that added a new content script that runs on every url (cont)
The extension dpggmcodlahmljkhlmpgpdcffdaoccni - Internxt VPN chromewebstore.google.com/detail/inter... was updated December 25th that added a new content script that runs on every url (cont)
December 27, 2024 at 1:11 AM
including internxtvpn[.]pro
The extension dpggmcodlahmljkhlmpgpdcffdaoccni - Internxt VPN chromewebstore.google.com/detail/inter... was updated December 25th that added a new content script that runs on every url (cont)
The extension dpggmcodlahmljkhlmpgpdcffdaoccni - Internxt VPN chromewebstore.google.com/detail/inter... was updated December 25th that added a new content script that runs on every url (cont)