Several popular Google Chrome extensions, including SEMRush, Browsec VPN, and Microsoft Editor, have been found to leak user data and hard-coded API keys over unencrypted HTTP connections, potentially exposing hundreds of thousands of users to security risks. Researchers identified 57 suspicious Chrome extensions with approximately six million users that exhibit spyware-like behavior or data-stealing capabilities, although no definitive criminal activity has been confirmed. Meanwhile, Ivanti disclosed a critical vulnerability in its Connect Secure VPNs, which is actively exploited by the hacking group UNC5221. This flaw has also been reportedly exploited by Chinese hackers. Additionally, two Mirai botnets have exploited a critical Wazuh vulnerability (CVE-2025-24016) with a CVSS score of 9.9, patched in February 2025, to launch large-scale distributed denial-of-service (DDoS) attacks targeting devices in the Asia-Pacific region and Italian-speaking communities. Fortinet vulnerabilities are being exploited in Qilin ransomware attacks, further highlighting the ongoing cybersecurity threats. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a Google Chromium V8 flaw to its Known Exploited Vulnerabilities catalog, underscoring the evolving threat landscape.