The ‘Zoom Stealer’ campaign has compromised over two million Chrome, Firefox, and Edge users by leveraging 18 stealth browser extensions to collect sensitive details from corporate meetings—including links, topics and passwords. This threat exploits remote work trends and the common sharing of meeting credentials, making unvetted browser extensions a potent attack vector.
Security experts urge regular reviews and removal of unused or unknown extensions, keeping browsers updated, and educating teams on these risks. Organisations should strengthen central controls over browser extensions to minimise exposure. The incident highlights that a neglected extension can pose as significant a threat as a weak password; maintaining vigilance with browser security is critical for safeguarding workplace communication and data.
‘Zoom Stealer’ Browser Extensions Threaten Corporate Meeting Security
