SquareX Discloses Architectural Limitations Of Browser DevTools In Debugging Malicious Extensions

Despite the expanding use of browser extensions, the majority of enterprises and individuals still rely on labels such as “Verified” and “Chrome Featured” as a security indicator. The recent Geco Colorpick case exemplifies how these certifications provide nothing more than a false sense of security. Koi Research disclosed 18 malicious extensions that distributed spyware to 2.3M users.

Palo Alto, California, July 29th, 2025/CyberNewsWire/--Despite the expanding use of browser extensions, the majority of enterprises and individuals still rely on labels such as “Verified” and “Chrome Featured” provided by extension stores as a security indicator. The recent Geco Colorpick case exemplifies how these certifications provide nothing more than a false sense of security - Koi Research[1] disclosed 18 malicious extensions that distributed spyware to 2.3M users, with most bearing the well-trusted "Verified" status.

SquareX researchers disclosed the technological reason behind this vulnerability, highlighting ...