TI Mindmap HUB
Threat Intelligence Report

Malicious Chrome Extension Performs Hidden Affiliate Hijacking

📅 January 28, 2026 📰 socket.dev 🔍 0 CVE(s) referenced

A Chrome extension posing as an Amazon ad blocker was caught secretly hijacking affiliate commissions by automatically replacing creators’ tags with its own, violating Chrome Web Store policies and deceiving both users and content creators.

vendor

Sign in to access the full report including:
detailed analysis, IOCs, MITRE ATT&CK mapping, and STIX bundle.

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap
🎯 IOC Extraction
⚔️ MITRE ATT&CK TTPs
📦 STIX 2.1 Bundle