152 Chrome Extensions Found Carrying Hidden Malware

152 Chrome Wallpaper Extensions Found Carrying Malware in Major Browser Security Scare

• 152 Chrome Wallpaper Extensions Found Hiding Malware in Massive Security Alert
• New Chrome Web Store Scandal: Dozens of Wallpaper Extensions Turn Malicious
• “Aesthetic” Chrome Extensions Expose Users to Silent Data Theft Campaign
• Security Experts Warn After Malware Discovered in Wallpaper Chrome Extensions
• Chrome Extension Crisis Deepens as 152 Fake Wallpaper Tools Found Dangerous
• Hidden Threat: How Wallpaper Extensions Became a Malware Gateway in Chrome

A fresh cybersecurity alert has raised concerns among millions of Google Chrome users after researchers uncovered a large-scale malicious campaign involving 152 browser extensions disguised as wallpaper and customization tools.

According to security analysts, the extensions were available on the official Chrome Web Store and appeared harmless, offering features such as animated wallpapers, new tab customization, and aesthetic themes. However, behind the visuals, many of them were reportedly designed to quietly harvest user data, inject malicious scripts, and establish persistent access to infected browsers.

The discovery highlights yet another growing wave of supply-chain style attacks targeting browser extensions, an ecosystem that has become increasingly popular but difficult to fully secure.

Hidden Malware Inside “Aesthetic” Extensions

Cybersecurity researchers found that the infected extensions were part of a coordinated campaign that relied heavily on social engineering. By disguising themselves as wallpaper and personalization tools, attackers were able to attract large numbers of downloads from unsuspecting users.

Once installed, some of the extensions allegedly began executing hidden scripts capable of tracking browsing activity, stealing session tokens, and redirecting users to malicious or ad-driven websites without consent.

Security experts warn that the attackers intentionally targeted customization tools because they often require broad browser permissions, making them an ideal entry point for exploitation.

Chrome Web Store Under Pressure Again

The incident adds to a growing list of security failures involving malicious Chrome extensions slipping through Google’s vetting process. In recent years, multiple campaigns have been uncovered where legitimate-looking extensions were later updated or replaced with malicious code, impacting millions of users globally.

Researchers say the latest case reinforces a worrying trend: attackers are increasingly patient, sometimes waiting weeks or months after publication before activating malicious functionality through updates.

Users Urged to Take Immediate Action

Security analysts are advising Chrome users to immediately review installed extensions and remove any unfamiliar wallpaper, theme, or customization tools. They also recommend resetting browser data, revoking suspicious permissions, and enabling enhanced Safe Browsing protections.

Experts further emphasize that users should only install extensions from trusted developers with verified reputations and regularly audit browser add-ons to reduce exposure to hidden threats.

A Growing Browser Security Crisis

Browser extensions have become a critical part of everyday internet use, but also one of the most exploited attack surfaces in modern cybersecurity.

With hundreds of millions of users relying on Chrome extensions for productivity, design, and personalization, experts warn that campaigns like this could continue to escalate unless stronger verification systems and real-time monitoring are implemented.

As investigations continue, the 152 wallpaper extensions case serves as another reminder that even the most visually appealing tools can conceal serious security risks beneath the surface.