LatestThe Word 'Toad' Gave Any Website Full Control of Chrome's Most Popular VPN

Find out what isspying on you

Search for problematic browser extensions across your fleet.

Our Findings

Read the code, not the manifest

We find problems no one else does because we don't just have a static scanner which looks for known patterns.
We read what the code actually does, every line.

Deobfuscation

Stylish hid behind 4 layers of base64 + AES-256-CBC + a columnar transposition cipher.
We unwrapped all of it.

Re-analysed on every update

Cyberhaven's attackers didn't change permissions, they changed code. We rescan every release, so a trusted extension can't quietly pivot into a stealer.

Novel-attack detection

LLM pipeline catches what no signature has seen: encoded payloads assembled at runtime, weird egress, page leaks.

Instrumented sandbox

An agent drives the extension like a real user, with aged accounts to trigger gated behavior.

Network egress capture

Every outbound request, traced live

We don't miss the 1 in 1000 that will cause you major problems.

Layered defence. Every finding survives cross-examination before it ever reaches you.

Recently flagged by us

Recent findings.

Works with
every popular browser

Chrome
Firefox
Safari
Edge
Opera
Brave
Arc
Vivaldi

The pipeline

From every store to a claim you can audit.

How it works

Chrome Web Store

315K extensions

Edge Add-ons

30K extensions

Safari Extensions

12K extensions

01

Static Analysis

Agents read the bundle before it ever runs. Manifest, code and supply chain.

manifest.json · host_permissions · code-bundle · npm-tree · signing-cert

02

Dynamic Analysis

Detonated in a sandboxed browser. Every call, request and write is traced.

network.trace · dom.access · storage.io · eval.calls · exfil.detect

03

Agentic Verification

An agent jury reconciles findings into a single claim with cited evidence.

cross-ref · dedupe · evidence-link · severity-score

c-47291·Critical

Exfiltrates all URLs in real time

8M Users

c-47263·High

Trusts main world in cryptographic operations

2M Users

c-47218·Low

Scoped to single host, no telemetry

700k Users

Latest research.

Deep-dives on the extensions, vendors, and attack patterns our pipeline surfaced.

View all posts
The Word 'Toad' Gave Any Website Full Control of Chrome's Most Popular VPN

The Word 'Toad' Gave Any Website Full Control of Chrome's Most Popular VPN

Urban VPN's Chrome extension accepted commands from any website via postMessage with no origin validation. Any page could disconnect your VPN, reroute your traffic, disable security features, and more - silently, with zero user interaction.

Read post
Anatomy of a Malicious Extension

Anatomy of a Malicious Extension

Read post
Why Permission Scoring Fails

Why Permission Scoring Fails

Read post
The AI Chat Scraping Extension Wall of Shame

The AI Chat Scraping Extension Wall of Shame

Read post
CRXcavator Alternative: Here's how it worked and what we built to replace it.

CRXcavator Alternative: Here's how it worked and what we built to replace it.

Read post

Join the conversation.

Researchers, security teams, banks, government agencies we've quietly saved from a very bad week.

Nang

Nang

CTO, Streamable

At Streamable, we can't afford security incidents and Am I Being Pwned found problematic extensions we had installed.

Centre for Cybersecurity Belgium

Centre for Cybersecurity Belgium

Wall of Fame 2026

Recognised for the responsible disclosure of critical vulnerabilities affecting users in Belgium and across the EU.

@phia

@phia

Phoebe Gates & Sophia Kianni

Am I Being Pwned made Phia more secure.

Integrations

Plug into your fleet.

Three ways to wire up Am I Being Pwned. Use one or all of them.

Browser extension

Invite link or MDM code enrollment. Every extension your team runs, continuously monitored.

MDM integration

Google Admin Console today. Intune, Jamf, and Kandji in development.

Interested?

Book a call