The Next Web

Google classifies back button hijacking as spam, enforcement starts June 2026

In short: Google is classifying “back button hijacking” as spam, targeting sites that abuse the browser History API to trap users when they try to navigate away. Enforcement begins 15 June 2026, with ...
PC Magazine

Stuck on a Website? Google Cracks Down on Aggravating 'Back Button Hijacking'

The back button on your browser is supposed to be an exit ramp, but some sites are abusing a tactic to trap users on their domains and manipulate traffic, according to Google. The tactic is called ...
CNET

Google Is About to Punish Websites for That Annoying Browser Back Button Trick

Tyler is a writer for CNET covering laptops and video games. He's previously covered mobile devices, home energy products and broadband. He came to CNET straight out of college, where he graduated ...
9to5google

Google Search to classify ‘back button hijacking’ as spam

Websites that engage in “back button hijacking” might soon appear less prominently in Google Search results as part of a new spam policy. Back button hijacking occurs when a site prevents users from ...
Android Authority

Google will penalize sites that mess with your browser's back button

Back button hijacking, a practice that interferes with normal web browser back button functioning, is now against Google Search’s guidelines. Sites that engage in back button hijacking will be subject ...
heise online

JSON Alexander: Syntax highlighting and tree view in the browser

JSON Alexander, a new extension for Firefox and Chrome, automatically formats JSON data, for example, sent by an API. The add-on enhances the rudimentary browser displays, particularly with syntax ...
Daily Emerald

How Browser Extensions Can Accidentally Compromise Your Privacy

“Can we go to another gear as a team?” Ducks head coach Melyssa Lombardi said after Oregon softball’s win over Iowa. “I think this series... Learn how to stay safe from the threats of dangerous ...
Bleeping Computer

Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into executing malicious JavaScript in their browser, allowing attackers to ...
GitHub

TabSearch Browser Hijacker and Adware Program

TabSearch does not serve an explicit legitimate purpose for end users. Instead, its design and behavior align with monetization through advertising and forced redirects. The program changes browser ...
Bleeping Computer

GhostPoster attacks hide malicious JavaScript in Firefox addon logos

A new campaign dubbed 'GhostPoster' is hiding JavaScript code in the image logo of malicious Firefox extensions with more than 50,000 downloads, to monitor browser activity and plant a backdoor. The ...
Dark Reading

'ShadyPanda' Hackers Weaponize Millions of Browsers

A sophisticated malware operation has infected 4.3 million Chrome and Edge browser users via malicious browser extensions that masqueraded as legitimate tools for years before being weaponized. The ...
The Hacker News

ShadyPanda Turns Popular Browser Extensions with 4.3 Million Installs Into Spyware

A threat actor known as ShadyPanda has been linked to a seven-year-long browser extension campaign that has amassed over 4.3 million installations over time. Five of these extensions started off as ...