⌂ Home News Fake Perplexity AI Chrome Extension Caught Spying on Users

Fake Perplexity AI Chrome Extension Caught Spying on Users

Fake Perplexity AI Chrome Extension Caught Spying on Users
Fake Perplexity AI Chrome extension detected by Microsoft security researchers
A A Text Size16px

Microsoft security researchers have identified a fraudulent Chrome extension that masquerades as the popular AI search tool Perplexity AI.

Instead of providing search assistance, the extension secretly monitored user activity and routed queries through attacker-controlled servers.

>>> NYPD Guards Taylor Swift's Apartment Ahead of MSG Wedding

The extension, named "Search for perplexity ai," appeared legitimate on the Chrome Web Store but contained hidden malicious functionality.

Microsoft Threat Intelligence detailed the findings in a blog post on June 30, prompting Google to remove the extension.

However, users who installed it must manually delete it.

How the Fake Extension Operated

The extension requested excessive permissions far beyond what a typical search helper requires.

>>> Taylor Swift and Travis Kelce's Wedding Feast: More Food Delivered to MSG

It used "chrome_settings_overrides" to hijack the default search engine, sending every address bar query to a fake domain, "perplexity-ai.

online," before forwarding to real search results.

Additionally, it employed "declarativeNetRequest" permissions to monitor and modify network traffic. This allowed it to log searches and capture real-time typing suggestions.

While there is no evidence of password theft, the extension could compile a detailed profile of user interests and browsing habits.

>>> Trump Shares AI Video of Himself Curing Celebrities of 'Trump Derangement Syndrome'

The legitimate Perplexity AI service operates at perplexity. ai.

Users should always verify the domain and developer before installing extensions, especially for trending AI tools.

How to Remove the Extension

If you have installed this extension, remove it immediately by following these steps:

  • Open Chrome and navigate to chrome://extensions/
  • Enable Developer mode in the top right corner
  • Locate the extension with ID "flkebkiofojicogddingbdmcmkpbplcd" and click Remove
  • Check your default search engine settings and reset them if necessary

This incident highlights that the Chrome Web Store is not foolproof. Despite review processes, scammers are becoming adept at impersonating popular services.

>>> Rams Legend LeRoy Irvin Dies at 68, Eric Dickerson Announces

Microsoft recommends regularly auditing your extensions, scrutinizing permissions, and favoring well-known developers.

S
Editors Team
Author: Silas B Jordan
📰 Latest Updates