{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreiaxp3kynmrebxtaixk243gomv7ufxy44v7sr22mdu4jamopvivtiy",
    "uri": "at://did:plc:6wtxqaikjf62unmnajbfbq5v/app.bsky.feed.post/3mp4dag7rjjc2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreibc5tw5yisfdaveiiebtgrz2w4yhbkpbxre2uhuzgyvzksp6zzomq"
    },
    "mimeType": "image/webp",
    "size": 23192
  },
  "path": "/malicious-chrome-extension-used-native-messaging-to-run-powershell-commands-on-windows/",
  "publishedAt": "2026-06-25T10:15:35.000Z",
  "site": "https://vpncentral.com",
  "tags": [
    "News",
    "Malicious Chrome Extension Used Native Messaging to Run PowerShell Commands on Windows",
    "VPN Central"
  ],
  "textContent": "A newly analyzed Chrome malware campaign used a rogue browser extension and a Native Messaging Host to turn infected Windows systems into remote-command backdoors. The campaign, detailed in a D3Lab analysis, began with Italian-language invoice phishing emails. Victims were shown what looked like a PDF invoice, but the downloaded file was actually an obfuscated JavaScript […]\n\nThe post Malicious Chrome Extension Used Native Messaging to Run PowerShell Commands on Windows appeared first on VPN Central.",
  "title": "Malicious Chrome Extension Used Native Messaging to Run PowerShell Commands on Windows"
}