FeedVulnerabilityClaude’s Chrome Extension Vulnerability Allows Malicious Ext...
VulnerabilityCyber Security News
9.0CRITICAL

Claude’s Chrome Extension Vulnerability Allows Malicious Extensions to Steal Gmail and Drive Data

📅 12 May 2026 at 10:40 UTC📰 Cyber Security NewsView original source ↗
Claude’s Chrome Extension Vulnerability Allows Malicious Extensions to Steal Gmail and Drive Data

Researchers have exposed a catastrophic vulnerability hiding inside the “Claude in Chrome” extension. By weaponizing an otherwise harmless, zero-permission extension, invisible attackers can completely hijack the trusted AI assistant. Transform it into a malicious puppet that silently pillages private Gmail messages, restricted Google Drive documents, and secret GitHub repositories. This terrifying blind spot exposes the […] The post Claude’s Chrome Extension Vulnerability Allows Malicious Extensions to Steal Gmail and Drive Data appeared first on Cyber Security News.

🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview

A vulnerability in the 'Claude in Chrome' extension allows malicious extensions to hijack Google Assistant and steal sensitive data, including Gmail messages and restricted Google Drive documents.

⚙️Technical Details
💥Impact Assessment
Severity: Critical
Who Is at Risk
Users of Gmail and Google Drive with the 'Claude in Chrome' extension installed
🛡️Recommended Actions
1Immediately uninstall the 'Claude in Chrome' extension from all devices
2Enable two-factor authentication for Gmail accounts
3Regularly review and update Google Drive permissions
📦Affected Products
Product Name: Chrome Extension (Claude)Operating System: Google Chrome

Read the full article

This is a curated summary. The complete article is available at Cyber Security News.

Read on Cyber Security News
← Back to feed