One week on Chrome. Also live on Edge and Brave.
Free Forever plan. No setup. No friction.
Just install, reload Flipboard, and your panel is ready. ✅
Join the curators and readers already on board. 👇

https://fediboard.com

#Flipboard #Fediverse #FediBoard #ContentCuration #ChromeExtension

🎬 Tutorial #1 is live!
From install to your first panel open — in under 2 minutes.
If you've been curious about FediBoard, this is where it all starts. Simple. Fast. Free Forever.
Watch it. Share it. No excuses. 👇

https://youtu.be/puMsmS6mKvQ?si=uAhPcS_kLm4lNkmJ

#Flipboard #Fediverse #FediBoard #Tutorial #ChromeExtension

FediBoard is now on the Chrome Web Store! 🎉

Stories, notifications, Copilot & Fediverse boosts — all in one panel. For curators AND readers.
Free Forever. On Chrome, Edge & Brave!

Flipboard just got its caffeine shot. ☕

#Flipboard #Fediverse #FediBoard #ContentCuration #ChromeExtension

Direct link to Extension in #chromewebstore:
👉https://chromewebstore.google.com/detail/fediboard-%E2%80%94-flipboard-cur/malfjpphmfdgfbkllccfjbgplmejgnoi

59 Victims, Zero Authentication: A ClickFix Campaign Force-Installs a Chrome Extension Banking Stealer and Leaves the Entire C2 Wide Open

Pulse ID: 69e06a4020aab69afffdb741
Pulse Link: https://otx.alienvault.com/pulse/69e06a4020aab69afffdb741
Pulse Author: Tr1sa111
Created: 2026-04-16 04:49:04

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Bank #Chrome #ChromeExtension #CyberSecurity #InfoSec #OTX #OpenThreatExchange #RCE #bot #Tr1sa111

108 Chrome Extensions Linked to Data Exfiltration and Session Theft via Shared C2 Infrastructure

Pulse ID: 69e06a47f33088e3fdb5744f
Pulse Link: https://otx.alienvault.com/pulse/69e06a47f33088e3fdb5744f
Pulse Author: Tr1sa111
Created: 2026-04-16 04:49:11

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Chrome #ChromeExtension #CyberSecurity #InfoSec #OTX #OpenThreatExchange #RAT #bot #Tr1sa111

108 Chrome Extensions Linked to Data Exfiltration and Session Theft via Shared C2 Infrastructure

A coordinated campaign of 108 malicious Chrome extensions operated through shared command-and-control infrastructure at cloudapi[.]stream has been identified, collectively accounting for approximately 20,000 installations. The campaign spans multiple threat categories: 54 extensions steal Google account identities via OAuth2, one extension actively exfiltrates Telegram Web sessions every 15 seconds, and 45 extensions contain a universal backdoor enabling arbitrary URL execution on browser startup. Published under five distinct publisher identities (Yana Project, GameGen, SideGames, Rodeo Games, and InterAlt), these extensions masquerade as legitimate tools including Telegram sidebar clients, slot games, YouTube and TikTok enhancers, and translation utilities. All extensions route stolen credentials, user identities, and browsing data to servers controlled by the same operator, with infrastructure confirming a Malware-as-a-Service business model.

Pulse ID: 69de5f631a2f4bca81392ccd
Pulse Link: https://otx.alienvault.com/pulse/69de5f631a2f4bca81392ccd
Pulse Author: AlienVault
Created: 2026-04-14 15:38:11

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#BackDoor #Browser #Chrome #ChromeExtension #Cloud #CyberSecurity #Google #InfoSec #Malware #MalwareAsAService #OTX #OpenThreatExchange #RAT #Telegram #Troll #YouTube #bot #AlienVault

59 Victims, Zero Authentication: A ClickFix Campaign Force-Installs a Chrome Extension Banking Stealer and Leaves the Entire C2 Wide Open

A Brazilian banking fraud operation leveraging ClickFix social engineering was discovered through a community tip, exposing a completely unauthenticated command-and-control infrastructure. The campaign deploys a malicious Chrome extension masquerading as a Banco Central do Brasil tool, force-installed via Chrome Cloud Management enrollment tokens. The extension achieves zero antivirus detections while targeting eight Brazilian financial institutions. At investigation time, 59 machines were compromised with seven active connections. The operator's C2 server exposed all endpoints without authentication, including admin panels, live victim screenshots, stolen credentials in cleartext, and intercepted Pix payment data. Attribution was established through WHOIS records revealing the operator's real name, CPF, and email address. The operation specifically targeted Northern Brazilian regional banks and credit cooperatives, with evidence of compromising a school fund account.

Pulse ID: 69de47aacc631b04e06bae89
Pulse Link: https://otx.alienvault.com/pulse/69de47aacc631b04e06bae89
Pulse Author: AlienVault
Created: 2026-04-14 13:56:58

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Bank #Brazil #Chrome #ChromeExtension #Cloud #CyberSecurity #Email #Endpoint #InfoSec #Mac #OTX #OpenThreatExchange #RAT #RCE #SocialEngineering #bot #AlienVault

📌 EchoTab : gestionnaire d'onglets Chrome open-source, keyboard-first, local-only et ultra performant. #Productivity #ChromeExtension

https://mondary.design/2026/04/echotab-gestionnaire-donglets-chrome-simple-et-performant/?utm_source=mastodon&utm_medium=jetpack_social