DarkSpectre Campaign: 8.8M Browser Users Compromised in Sophisticated Chinese Malware Operation

Security researchers at Koi Security just exposed DarkSpectre: a single, well-funded Chinese threat actor behind three coordinated campaigns infecting 8.8 million Chrome, Edge, and Firefox users over 7 years.

Key tactics that make this chilling:

Patient "Time Bombs": Extensions stay benign for 3+ days (even 5 years!) to pass store reviews, then activate malicious payloads.

Steganography Evasion: Hide JS code in PNG logos-looks innocent, executes silently.

Corporate Espionage: Zoom Stealer grabs meeting intel from 28 platforms (Zoom, Teams, Meet) in real-time.

From consumer fraud to boardroom spying. This isn't opportunistic crime, it's nation-state level infrastructure.

Check your extensions NOW. Google/Microsoft have removed some, but won't auto-uninstall.

Full details:

https://www.perplexity.ai/page/8-8m-browser-users-hit-by-chin-JbBUkOi5Sauu_ozgLmq4UQ

#Cybersecurity #DarkSpectre #Malware #BrowserSecurity