Malicious Chrome extension impersonates Perplexity AI to steal search data
A bogus version of the Perplexity AI answer engine has been spotted luring Chrome users into installing a malicious extension that quietly siphons off their search queries and browsing activity. Disguised as the legitimate tool, the imposter slipped past Google’s vetting process and reached the Chrome Web Store undetected, highlighting once again how attackers exploit trusted brand names to spread surveillance malware.
A camouflaged threat in plain sight
The rogue extension, discovered by security analysts, mimics the real Perplexity AI interface so closely that casual users would struggle to notice the difference. Once installed, it intercepts every search submitted through the browser, forwarding the text—and often the associated metadata—to an external server controlled by the attackers. While the exact volume of compromised data remains unconfirmed, the campaign demonstrates how even established productivity tools can be weaponized for intelligence gathering.
How the attack unfolds
Unlike overt malware that flashes pop-ups or encrypts files, this extension operates stealthily. It loads with the browser, remains silent, and avoids triggering Chrome’s built-in warnings. Victims may only realize something is amiss when they notice unusual network activity or when their search results become unexpectedly slow. Google has since removed the counterfeit listing, but researchers warn that similar decoys could reappear under fresh disguises, underscoring the need for users to verify publisher identities before granting extensions broad permissions.
Protecting yourself without giving up convenience
Experts advise sticking to verified extensions, checking the publisher’s name and URL, and reviewing the requested permissions—especially those that exceed the tool’s stated purpose. A quick cross-check with the official Perplexity AI website or app store page can prevent costly oversights. Until automated defenses catch every imposter, a moment of skepticism remains the simplest safeguard against this quietly invasive threat.
Source: BleepingComputer. AI-assisted editorial synthesis — TechnoExpress.