BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

Malicious Chrome Wallpaper Extensions Infect 105K Users

Malicious wallpaper extensions fraudulently fabricate Google search traffic.

  • A cluster of 152 Google Chrome extensions has been discovered distributing a potentially unwanted program (PUP) and committing attribution fraud.
  • The extensions, which act as live wallpaper add-ons, have been installed over 105,000 times and misrepresent their data collection practices.
  • The operation uses hidden code to fabricate search traffic origin and delete local browser databases, suggesting a financially motivated adware campaign.

On June 15, 2026, cybersecurity researchers uncovered a network of 152 malicious Google Chrome extensions posing as live wallpaper add-ons. This widespread campaign, according to reports, uses three brand backends to distribute a potentially unwanted program (PUP).

- Advertisement -

The extensions, operating under 38 publisher accounts, falsely claim they do not collect user data. However, their privacy policies admit to logging IP addresses and sharing information with ad partners like Google AdSense.

Consequently, a sub-cluster of these add-ons contains hard-coded JavaScript URLs activated during installation and removal. The install URL includes UTM parameters to disguise the activity as organic Google search traffic.

Meanwhile, the uninstall URL is wrapped in a google.com/url format to mimic a genuine search result click. “The visit is not a person who searched Google; it is the extension opening a tab on its own and stamping it ‘arrived from Google organic search,'” the investigating company explained.

Furthermore, the JavaScript files possess a dormant capability to delete every IndexedDB database upon service worker start. The campaign is assessed as a financially motivated commercial adware and traffic-attribution-fraud operation.

- Advertisement -

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

China-linked hackers target Indian taxpayers via tax phishing

A suspected China-nexus cyber campaign named Operation DragonReturn is targeting Indian taxpayers and financial...

Alphabet Launches Two New AI Models, Eyes Stock Boost

Alphabet launches two new AI models, Nano Banana 2 Lite and Gemini Omni Flash,...

Nvidia’s Kyber AI rack delayed to 2028: report

NVIDIA's next-generation Kyber server rack, designed for Rubin Ultra chips, is delayed to 2028...

TrojPix Air-Gap Attack Uses Monitor Cables

Researchers at Shandong University have demonstrated a new covert data exfiltration technique called TrojPix.The...

Bitcoin Reclaims $63k as Crypto Market Sees July Reversal

Bitcoin (BTC) reclaimed $63,000 in early July 2026, signaling a market reversal after a...

Must Read

6 Best VPN Providers That Accept Monero

Privacy and anonymity are probably the most important things that we should all consider in today's internet era. Although there are a lot of...
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading