Security firm Koi Security warns in a new report about Zoom Stealer, a new malware campaign that aims to get its hands on potentially sensitive information and data from Zoom users. So far, security researchers have discovered 18 malicious extensions for Chrome, Firefox, and Microsoft Edge that are used to collect passwords, usernames, links, topics, and descriptions from Zoom meetings. The 18 malicious extensions have been downloaded a total of 2.2 million times, reports BleepingComputer . The first malicious extension to be discovered was Twitter X Video Downloader, and the rest of the malicious extensions are all similarly useful as video downloaders, meeting timers, recording assistants, and more. Chrome Audio Capture was also named as one of the 18 malicious extensions. According to Koi Security, the Chinese hacker group DarkSpectre is behind the malware campaign—a claim that’s supported by references in the code and the fact that the malware traffic goes through the Chinese cloud service Alibaba Cloud.