Following up on my last post — this one is specifically about fake AI browser extensions. Dark Reading paints a scenario that is pretty unsettling.

“The employee opens a CRM system containing customer names, contact details, and transaction history. They click ‘Summarize.’ Behind the scenes: The extension reads the page content, that content is transmitted to attacker-controlled servers, a summary is returned, and the full dataset may be retained remotely.”

That plays out 260,000 times over. Do your research before installing any AI extension.