Malicious AI browser extensions such as Urban VPN, Smart Sidebar, and Chat AI are being used to secretly exfiltrate sensitive conversations from services like ChatGPT, Claude, DeepSeek, and Gemini. Security researchers warn that these tools can bypass user trust and store protections, putting enterprise endpoints and proprietary data at serious risk. #UrbanVPN #SmartSidebar #ChatAI #ChatGPT #Claude #DeepSeek #Gemini
Keypoints
- Threat actors are hiding data-stealing features inside popular AI browser extensions.
- Urban VPN can intercept chats and redirect conversation data through external code frameworks.
- Smart Sidebar uses DOM monitoring to capture ChatGPT and DeepSeek interactions in real time.
- The stolen payloads include full prompts, responses, timestamps, and conversation identifiers.
- Chat AI used an iframe-based design that helped conceal remote communication from store checks.
Read More: https://securityonline.info/malicious-ai-extensions-steal-chats/