The gist: A fake Perplexity extension on the Chrome Web Store was discovered intercepting search queries and browsing data and transmitting them to attackers’ servers.
A malicious browser extension on the Chrome Web Store disguises itself as the official Perplexity AI application and intercepts search queries to harvest user data. This contradicts the assumption that the Chrome Web Store performs sufficient security controls.
A Chrome extension advertised as “Perplexity AI” collected sensitive browsing data from users without their consent. The extension was available on the official Chrome Web Store and led users to believe it was the genuine Perplexity application.
The extension intercepts search queries, visited URLs, and other browsing activities, forwarding them to the attacker’s servers. This enables large-scale tracking of user behavior without the awareness of those affected. Such extensions can additionally serve as a gateway for further malware or be exploited for identity theft.
For CISOs, this is a warning about several risks: First, browser extensions are a frequently underestimated attack vector in enterprise environments, especially when users employ personal devices for business communication. Second, the case demonstrates that even trusted platforms like the Chrome Web Store can be compromised by deception and malware. Third, it underscores the necessity of policies to control browser extensions and their permissions within organizations.
The fake extension has since been removed from the Chrome Web Store. Users who installed it should uninstall it and review their browsing data and passwords.
Source: www.bleepingcomputer.com · Published 30 June 2026
Lumi AI News — AI-assisted curation in accordance with Art. 50 EU AI Act. Paraphrasing and classification by Lumi News Pipeline v1.7.2.