Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input

A malicious Chrome extension, dubbed “Perplexity,” has been caught intercepting sensitive user input and search queries on popular browsers, including Google Chrome, Mozilla Firefox, and Microsoft Edge. The extension, which boasts over 200,000 users worldwide, was created to provide features such as website optimization and analytics insights but secretly siphoned off valuable information from unsuspecting internet users.

Perplexity’s nefarious activities were discovered by security researchers who analyzed the add-on’s code and found that it hijacked both address bar input and search queries. This allowed the attackers to steal sensitive data, including login credentials, credit card numbers, and other personal identifiable information (PII). The extension’s developers claimed they had no knowledge of the malicious behavior, but experts are now questioning whether the creators were genuinely unaware or merely trying to downplay their involvement.

The extension’s functionality was made possible through the use of a technique called “content injection,” which allows attackers to inject malicious code into websites without users’ consent. This tactic is often employed by cybercriminals to bypass security measures and steal sensitive information. By leveraging this technique, Perplexity was able to intercept user input and transmit it back to its creators, who could then use the data for various illicit purposes.

The emergence of AI-powered cybersecurity tools has also been linked to a recent surge in software vulnerability discoveries. These advanced models can identify vulnerabilities in code that human developers often miss. However, as this incident highlights, even well-intentioned software can be compromised by malicious actors. This underscores the importance of regular security audits and the need for developers to adopt more robust testing procedures.

The Perplexity extension’s impact is not limited to its users alone; it also exposes a broader vulnerability in the way browsers handle add-ons. The incident serves as a stark reminder that even seemingly innocuous software can harbor hidden dangers, and users must remain vigilant when installing extensions or plugins on their devices. As we navigate an increasingly complex digital landscape, staying informed about emerging threats is crucial for maintaining online security.

In light of this incident, it’s essential to reassess our browser add-on management practices. Always research the extension you’re about to install, read user reviews, and be wary of unfamiliar names or suspiciously vague descriptions. Furthermore, keep your browsers up-to-date with the latest security patches and enable two-factor authentication (2FA) whenever possible. By taking these simple precautions, we can significantly reduce our exposure to potential cyber threats like Perplexity.


Source: The Hacker News — 2026-06-29