Krux
March 4, 2026
Malicious Extensions Could Hijack Chrome's Gemini Panel
Published: March 4, 2026 at 6:36 AM
Updated: March 4, 2026 at 6:36 AM
100-word summary
Palo Alto Networks discovered a high-severity flaw letting rogue Chrome extensions hijack Google's Gemini Live panel and access your camera, microphone, and local files. The attack worked through basic extension permissions, turning a feature meant to help you into a phishing tool. Google patched it in early January after October disclosure, but the vulnerability exposes a bigger problem: AI assistants baked directly into browsers create juicy new targets for attackers. Every helpful AI panel is now potential real estate for malware. The era of trusting browser extensions because they seem harmless just ended.
What happened
Palo Alto Networks discovered a high-severity flaw letting rogue Chrome extensions hijack Google's Gemini Live panel and access your camera, microphone, and local files. The attack worked through basic extension permissions, turning a feature meant to help you into a phishing tool. Google patched it in early January after October disclosure, but the vulnerability exposes a bigger problem: AI assistants baked directly into browsers create juicy new targets for attackers. Every helpful AI panel is now potential real estate for malware.
Why it matters
The era of trusting browser extensions because they seem harmless just ended.