Cyberhaven’s Chrome extension was manipulated with a phishing email sent to developers. Following the incident, it transpired that another 19 Chrome extensions had been compromised, affecting 1.46 million downloads. The earliest compromise dates back to May 2024. The successful attacks were due to ineffective management and monitoring of browser extensions as part of company’s security programs. The breach seemingly has its roots in a code library used by developers to monetise their extensions.
NHS suppliers required to meet robust measures under Cyber Bill
The UK government has released its Cyber Security and Resilience Bill plans, seeking to bolster public service cyber defences, especially for the NHS. The legislation,
