AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

Fake AI Chrome extensions with 300K users steal credentials, emails

highnews

securityprivacy

Source: BleepingComputerFebruary 12, 2026

Summary

Over 30 fake AI assistant Chrome extensions with more than 300,000 total users are stealing user credentials, emails, and browsing data by pretending to be AI tools. The extensions, collectively called AiFrame, don't actually run AI locally; instead, they load content from remote servers they control, allowing attackers to intercept sensitive information like Gmail messages and authentication details without users knowing.

Solution / Mitigation

The source recommends checking LayerX's list of indicators of compromise to identify if you have installed any malicious extensions. If compromise is confirmed, users should reset passwords for all accounts.

Classification

Attack Type

PII LeakageData Extraction

Attack SophisticationModerate

Impact (CIA+S)

confidentiality

Affected Vendors

Google

Related Issues

critical

CVE-2025-45150: Insecure permissions in LangChain-ChatGLM-Webui commit ef829 allows attackers to arbitrarily view and download sensitive

Similar attackNVD/CVE Database

high

CVE-2025-54868: LibreChat is a ChatGPT clone with additional features. In versions 0.0.6 through 0.7.7-rc1, an exposed testing endpoint

First tracked: February 12, 2026 at 02:20 PM

Classified by LLM (prompt v3) · confidence: 92%