Authorities have issued warnings about a series of scams targeting users on social media platforms, particularly through fake Telegram group invitations. Scammers are luring individuals into these groups by using influencer comments, which leads to the installation of malicious code via Powershell. This code can deploy the Remcos Trojan, a tool that allows full remote control of the infected system. In a related incident, a supply chain attack was detected on December 25, where several Chrome extensions were compromised after a Cyberhaven employee fell victim to a phishing email. The attack has raised concerns over the security of browser extensions, with reports indicating that malicious code was inserted into 36 Chrome extensions. Additionally, a lawsuit has been filed against PayPal regarding its browser extension Honey, which has faced scrutiny for its affiliate practices. PayPal acquired Honey for $4 billion in 2020, and the lawsuit claims that the company was aware of the alleged unethical tactics employed by the extension.