Spam alert infographic: Chrome extension icons flooding WhatsApp with messages, red violation flags; protective shields for reviews and official tools, with "Avoid Unverified Extensions" warning banner over a browser interface.

Cybersecurity researchers uncovered 131 rebranded clones of a WhatsApp Web automation extension on Chrome, used to spam Brazilian users by bypassing anti-spam rules. Published by "WL Extensão" and DBX Tecnologia, these extensions automate bulk messaging, violating Google's policies and posing as CRM tools.

Spam alert infographic: Chrome extension icons flooding WhatsApp with messages, red violation flags; protective shields for reviews and official tools, with "Avoid Unverified Extensions" warning banner over a browser interface.Spam alert infographic: Chrome extension icons flooding WhatsApp with messages, red violation flags; protective shields for reviews and official tools, with "Avoid Unverified Extensions" warning banner over a browser interface.

The campaign, active for 9 months, offers a white-label reselling model promising high revenue, with extensions like YouSeller having 10,000 users. They inject code into WhatsApp Web to evade detection and flood users with unsolicited messages.

Spam alert infographic: Chrome extension icons flooding WhatsApp with messages, red violation flags; protective shields for reviews and official tools, with "Avoid Unverified Extensions" warning banner over a browser interface.Spam alert infographic: Chrome extension icons flooding WhatsApp with messages, red violation flags; protective shields for reviews and official tools, with "Avoid Unverified Extensions" warning banner over a browser interface.

Protect yourself:

Avoid unverified extensions, check reviews, and use official WhatsApp features. This highlights risks in browser add-ons, especially for spam and related threats like the SORVEPOTEL worm.


NPAV offers a robust solution to combat cyber fraud. Protect yourself with our top-tier security product, FraudProtector.net