Home » Technology » Google » Chrome risk: Millions use invisible espionage extensions

Chrome risk: Millions use invisible espionage extensions

8 months ago Priti Rajpoot

57 Chrome extensions with more than 6 million users collect browser data secretly. The add-ons cannot be found in the Chrome Web Store and require extensive permissions. Some even wear Google’s “featured” badge.

Dangerous chrome extensions in hidden

The trust in chrome extensions has shaken an alarming discovery: cyber security researchers have identified 57 potentially risky add-ons that together reach over 6 million users. These extensions, which are “invisible”, do not appear in the Chrome Web Store nor are they recorded by search engines.

You can only install users if the direct URL is known to you. The affected add-ons require extensive permissions, including access to the entire course of the browser, all cookies and the possibility of performing JavaScript on websites visited.

Among the best known are “Cuponomia: Coupons and Cashback” with over 700,000 users as well as “Fire Shield Extension Protection” and “Total Safety for Chrome”, each recording over 300,000 installations. In an analysis the Researcher John Tuckner from Secure Annex questionable properties of these extensions.

However, many of them pretend to protect users from harmful extensions or offer useful functions, but often do not fulfill these promises. Instead, they contain heavily veiled code that collects browser information and transfers to external servers. These extensions can potentially monitor the entire surfing behavior and access stored cookies and are therefore remotely controlled.

Mysterious distribution and Google identification

A puzzling aspect is the inexplicably high number of users of these hidden extensions. Experts suspect that they are spread through advertisements or in combination with unwanted software. Ironically, some of these suspicious add-on even carry the “featured” badge of Google, which is intended for trustworthy extensions. 

Protection measures for Chrome users

Users who have installed one of the affected extensions should remove them immediately and change their passwords for important online services. A complete list of suspicious add-ons is in a public table. This discovery emphasizes the importance of being careful when installing browser extensions and only choosing those that offer clear benefits.

Tags: , , , , ,

More Stories

YouTube Music Is Finally Adding a Playlist Search Feature

4 weeks ago Yasir Zeb

Google Photos gets Nano Banana: AI editing becomes more personal

1 month ago Yasir Zeb

Google Abandons Plan to Block Sideloading, Proposes “Advanced” Warning System Instead

1 month ago Yasir Zeb

Today’s Latest

Why Dr. David Greene, Leading Regenerative Medicine Pioneer, Chose to Have His Hair Transplant in Turkey at UniquEra Clinic

18 hours ago Alexia Hope

Worldcoin’s strategic role in a world where bots represent 51% of all web traffic

18 hours ago Alexia Hope

How Technical SEO Builds Infrastructure for Ecommerce Brands

18 hours ago Alexia Hope

What Is TVL in DeFi? A Complete Guide for Crypto Investors

2 days ago Alexia Hope

5 Digital Trends Making Two-Wheeler Insurance Smarter and More Affordable

2 days ago Alexia Hope

Google overtakes OpenAI, will win race

3 days ago Yasir Zeb

The vortex of the memory crisis is gripping Nintendo

3 days ago Yasir Zeb

Vulnerability in WinRAR is being actively exploited by several groups

3 days ago Yasir Zeb

The New Rules of Online Reputation for Modern Companies

3 days ago Alexia Hope

Best Drawing Tablets That Feel Like Paper for a Realistic Feel

4 days ago Alexia Hope