The password manager's autofill browser extension gets compromised.

This used to happen with some frequency but I haven't heard of it happening in some time now.

Common? Which of the good pw managers' extensions have been compromised in the last year?

just recently there was a clickjacking attack that affected most popular password manager extensions. It tricked the managers into filling passwords to random pages, worked on almost all extensions and all pages.

Are you refering to this one https://marektoth.com/blog/dom-based-extension-clickjacking?

This doesn't seem to be "passwords on random pages", only "Personal Data + Credit Card,", passwords are domain-specific unless the website is hacked itself.

> The attacker can only steal credentials for the vulnerable domain.

ok that's nice