#token-hijacking — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #token-hijacking, aggregated by home.social.
-
Bad actors are creating browser extensions that claim to be ChatGPT productivity tools, but that steal your account credentials and hijack sessions instead.
While researchers can find and warn us about these malicious extensions, it’s important to recognize that we’re about to enter an era where this kind of behavior is actually relied on by good actors (read: agents) as well. It’s imperative that we work on developing alternatives to this.
#Security #TokenHijacking #SessionHijacking
https://www.bitdefender.com/en-us/blog/hotforsecurity/beware-fake-chatgpt-browser-extensions-are-stealing-your-login-credentials