CyberSecurity News
Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts
AI summary
Microsoft has removed 119 malicious Edge extensions from its store that concealed malware within image and font files. These extensions, linked to a single threat actor, would lie dormant for days after installation before activating to steal credentials and commit ad fraud. The operation, dubbed StegoAd, combines steganography and adware techniques. The threat actor behind StegoAd has been active since at least 2021. Microsoft's action shuts down this long-running malicious operation. The extensions' use of steganography allowed them to hide their true purpose.
This is an AI-generated brief aggregated by HackerFeeds for convenience and grounded in the source’s own summary; the related CVE, threat-group and country data is from HackerFeeds’ own indexes. The original article is the authoritative source — all rights belong to The Hacker News.