{"data":{"id":"7b219001-a8ae-4cdb-964b-381bc1fcd6ba","title":"Malicious AI Assistant Extensions Harvest LLM Chat Histories","summary":"Malicious Chromium-based browser extensions impersonating legitimate AI assistant tools have been installed approximately 900,000 times and are actively collecting LLM chat histories (conversations with AI systems like ChatGPT), URLs, and sensitive browsing data across more than 20,000 enterprise organizations. These extensions were distributed through the Chrome Web Store using convincing AI-themed names and descriptions, exploiting users' trust in productivity tools and overly permissive browser extension permissions to harvest proprietary code, internal workflows, and confidential information at scale.","solution":"N/A -- no mitigation discussed in source.","labels":["security"],"sourceUrl":"https://www.microsoft.com/en-us/security/blog/2026/03/05/malicious-ai-assistant-extensions-harvest-llm-chat-histories/","publishedAt":"2026-03-05T16:02:12.000Z","cveId":null,"cweIds":null,"cvssScore":null,"cvssSeverity":null,"severity":"high","attackType":["data_extraction","supply_chain"],"issueType":"news","affectedPackages":null,"affectedVendors":["OpenAI"],"affectedVendorsRaw":["ChatGPT","DeepSeek","Microsoft Defender","Google Chrome","Microsoft Edge"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":null,"epssScore":null,"patchAvailable":null,"disclosureDate":null,"capecIds":null,"crossRefCount":0,"attackSophistication":"moderate","impactType":["confidentiality"],"aiComponentTargeted":"api","llmSpecific":true,"classifierConfidence":0.92,"researchCategory":null,"atlasIds":null}}