Context: podmiot powiązany przez MITRASZEWSKA KAROLINA ELŻBIETA, podmiot powiązany przez MOKRZYCKI ALEKSANDER JERZY, podmiot powiązany przez URBANEK ROZALIA of PFR VENTURES
Cyberhaven Chrome Extension Compromised Leading to Massive Data Theft IncidentHIGH
Cyberhaven, a data‑loss prevention company, suffered a supply‑chain breach when a phishing attack compromised an employee’s Chrome Web Store account. The attackers published a malicious version of the Cyberhaven Chrome extension (version 24.10.4) on 25 December 2024, which exfiltrated cookies, session tokens and passwords from more than 400 000 users. Cyberhaven detected the incident on 26 December 2024, removed the malicious package, and issued an emergency advisory to customers to revoke and rotate credentials. The company engaged external investigators and law‑enforcement agencies and subsequently released a clean version of the extension.
The malicious updates allowed attackers to steal data from users' Facebook Ads accounts, AI platforms, and other services.
Extracted Facts (3)
Cyberhaven, a data‑loss prevention company, suffered a supply‑chain breach. The breach was caused by a phishing attack that compromised an employee’s Chrome Web Store account.100%
REPUTATIONAL
Cost: $0.001855
The attackers published a malicious version of the Cyberhaven Chrome extension (version 24.10.4) on 25 December 2024. This malicious version exfiltrated cookies, session tokens and passwords from more than 400 000 users.100%
REPUTATIONAL
Cost: $0.001855
Cyberhaven detected the incident on 26 December 2024 and removed the malicious package. The company issued an emergency advisory to customers to revoke and rotate credentials.100%