Microsoft security researchers have identified a fraudulent Chrome extension that masquerades as the popular AI search tool Perplexity AI.
Instead of providing search assistance, the extension secretly monitored user activity and routed queries through attacker-controlled servers.
>>> NYPD Guards Taylor Swift's Apartment Ahead of MSG Wedding
The extension, named "Search for perplexity ai," appeared legitimate on the Chrome Web Store but contained hidden malicious functionality.
Microsoft Threat Intelligence detailed the findings in a blog post on June 30, prompting Google to remove the extension.
However, users who installed it must manually delete it.
How the Fake Extension Operated
The extension requested excessive permissions far beyond what a typical search helper requires.
>>> Taylor Swift and Travis Kelce's Wedding Feast: More Food Delivered to MSG
It used "chrome_settings_overrides" to hijack the default search engine, sending every address bar query to a fake domain, "perplexity-ai.
online," before forwarding to real search results.
Additionally, it employed "declarativeNetRequest" permissions to monitor and modify network traffic. This allowed it to log searches and capture real-time typing suggestions.
While there is no evidence of password theft, the extension could compile a detailed profile of user interests and browsing habits.
>>> Trump Shares AI Video of Himself Curing Celebrities of 'Trump Derangement Syndrome'
The legitimate Perplexity AI service operates at perplexity. ai.
Users should always verify the domain and developer before installing extensions, especially for trending AI tools.
How to Remove the Extension
If you have installed this extension, remove it immediately by following these steps:
- Open Chrome and navigate to chrome://extensions/
- Enable Developer mode in the top right corner
- Locate the extension with ID "flkebkiofojicogddingbdmcmkpbplcd" and click Remove
- Check your default search engine settings and reset them if necessary
This incident highlights that the Chrome Web Store is not foolproof. Despite review processes, scammers are becoming adept at impersonating popular services.
>>> Rams Legend LeRoy Irvin Dies at 68, Eric Dickerson Announces
Microsoft recommends regularly auditing your extensions, scrutinizing permissions, and favoring well-known developers.