Cyberhaven’s Chrome extension was manipulated with a phishing email sent to developers. Following the incident, it transpired that another 19 Chrome extensions had been compromised, affecting 1.46 million downloads. The earliest compromise dates back to May 2024. The successful attacks were due to ineffective management and monitoring of browser extensions as part of company’s security programs. The breach seemingly has its roots in a code library used by developers to monetise their extensions.
Removing Technical Debt Supports Healthcare Cybersecurity and Incident Response
Technical debt in healthcare, the result of using outdated technology, limits the visibility of vulnerabilities within systems, making it harder to mitigate threats. While upgrading
