Summary

A significant security incident involving Google Chrome extensions has exposed multiple critical flaws, including a specific CVE-2026-40176 vulnerability with a CVSS score of 7.8 that allows attackers to control repository configurations in a malicious composer.json file. This flaw could enable malicious code to execute commands in the user's running Composer process, which is highly concerning because the command executed depends on the user running the application itself. Consequently, an attacker utilizing the compromised extensions can target the entire web site they visit, executing arbitrary JavaScript code to install unwanted ads and perform browser-level abuse by injecting malicious scripts into every visited page. The security researchers discovered a coordinated campaign involving a cluster of 108 Chrome extensions communicating with a central command-and-control infrastructure.

Title

The Hacker News | #1 Trusted Source for Cybersecurity News

Description

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach reports, expert analysis, and actionable insights for infosec professionals and decision-makers.

Keywords

security, vulnerability, news, threat, access, data, have, code, risk, intelligence, vulnerabilities, score, google, devices, more, remote, attacks

NS Lookup

A 104.26.11.117, A 104.26.10.117, A 172.67.72.95

Dates

Created 2026-03-07

Updated 2026-04-15

Summarized 2026-04-15