Microsoft's security researchers have uncovered a malicious Chrome browser extension that posed as the popular Perplexity AI search engine while silently harvesting users' search queries and every character typed into the browser's address bar.
The extension — named "Search for perplexity ai" (extension ID: flkebkiofojicogddingbdmcmkpbplcd) — was available on the Chrome Web Store before Google removed it following Microsoft's responsible disclosure.
What It Did
The extension operated as a convincing Perplexity impersonator. From the user's perspective, it appeared to enhance their browsing with AI-powered search. In reality, it was running a passive surveillance operation:
- Intercepted every search query entered through the browser
- Captured keystrokes in the address bar in real time — not just completed searches, but partial input as well
- Exfiltrated data including browser headers, IP addresses, and user agent strings to an attacker-controlled server
- Redirected traffic through a lookalike domain —
perplexity-ai[.]online— before forwarding users to legitimate results
The lookalike domain was designed to be indistinguishable from the real perplexity.ai at a glance, making the exfiltration difficult for users to detect through casual network monitoring.
Technical Operation
The extension abused Chrome's extension permissions model, which allows extensions with broad tab and webRequest permissions to intercept and observe virtually all browser traffic. Once installed:
- The extension registered listeners on address bar input events
- All captured data was sent to
perplexity-ai[.]onlinevia HTTP requests - The server at the lookalike domain logged the data before proxying the user's actual search to the real Perplexity service
- Users received normal-looking results with no indication anything was wrong
This type of attack is particularly effective because browser extensions are often installed without careful scrutiny, and many users assume the Chrome Web Store performs thorough security vetting — it does not.
Scope of Exposure
All users who installed the extension were exposed. The full number of installs is not publicly confirmed, but the extension's presence on the official Chrome Web Store gave it a veneer of legitimacy that likely drove significant downloads.
Data collected could be used for:
- Credential theft — capturing typed passwords if users entered them in the address bar
- Surveillance — building a profile of a user's research and browsing habits
- Corporate espionage — intercepting sensitive internal searches from enterprise users
Remediation
If you installed this extension:
- Remove it immediately: Chrome Menu → Extensions → Remove "Search for perplexity ai"
- Change passwords for any accounts you may have searched for or typed credentials into
- Review your Chrome extensions — audit all installed extensions and remove any you don't recognize or no longer use
- Check for the IOC: Block
perplexity-ai[.]onlineat your DNS or firewall level
Going forward, install extensions only from verified publishers with a clear history and minimal permissions.