<ul data-eligibleForWebStory="false"><li>Security researchers from Koi Security discovered almost two dozen Chrome and Edge browser add-ons spying on users by tracking visited sites and communicating with a third-party server.</li><li>The campaign named Operation RedDirection identified 18 add-ons compromising 2.3 million users, including VPNs, site unblockers, weather forecast add-ons, and emoji add-ons.</li><li>The add-ons, initially clean and functional, were likely hijacked at some point, leading to data privacy breaches. Although some were removed, many are still available through third-party stores.</li><li>To stay safe, users are advised to remove suspicious add-ons, clear browsing data, run antivirus scans, change passwords, and be cautious of unexpected communications and links.</li></ul>

Malicious Google Chrome and Edge extensions downloaded more than 2 million times - here's how to stay safe from being tracked online

Discover more