r/cybersecurity: WaSteal Browser Extension Campaign Expands to 183 Total Malicious Extensions After Infrastructure Pivoting Uncovers 57 Additional Entries

A security researcher following up on the original WaSteal browser extension campaign ran infrastructure pivots using internal tooling and surfaced 57 additional extensions linked to the same operator — bringing the confirmed total to 183 extensions sharing the same backend and exfiltration behavior. All 183 remain active in major extension stores as of the posting. The researcher notes the campaign's operator infrastructure is consistent across all identified entries, suggesting centralized control.