+7 (777) 001 44 99
Қазақша
Русский
English
Tengrinews.kz - More than 3 million users of the Google Chrome browser are at risk, according to dailymail.co.uk.
Google Chrome users have been warned about 16 browser extensions that have been hacked. Cybersecurity experts have advised users to delete them immediately after it was discovered that the criminals had introduced malicious codes into the software.
The hack allowed the attackers to steal user data and commit 'search engine fraud' - a fraud that involves redirecting clicks to hacker-controlled websites.
Which extensions are dangerous?
The dangerous browser extensions include Blipshot, Emojis, Color Changer for YouTube, Video Effects for YouTube and Audio Enhancer, Themes for Chrome, as well as YouTube Picture in Picture and Mike Adblock for Chrome, Super Dark Mode and Emoji Keyboard Emojis for Chrome. Adblocker for Chrome, Adblock for You, Adblock for Chrome, Nimble Capture, KProxy and Page Refresh, Wistia Video Downloader are also considered compromised.
Chrome itself has already removed the extensions from its web store. Those who have already downloaded them will have to remove them manually. The browser does not support extensions on Android phones. Therefore, only those who install these programs on their computers are at risk.
Unlike typical apps and extensions created by hackers from scratch, these Chrome extensions were actually hijacked by cybercriminals through phishing attacks on developers. Once they gained control, the hackers were able to inject malicious updates into official extensions, meaning that anyone who installed them has already opened the door for a future cyberattack.
How to avoid the threat
The GitLab Threat Intelligence team noted that all of these extensions had one worrying thing in common – the permissions they were requesting access to. All of the hacked Chrome extensions were granted permissions that allowed them to interact with any website the victims visited.
To avoid being compromised, experts recommend that Chrome users read the permission settings carefully when installing new extensions. It’s also worth paying attention to the program’s reviews to see if previous users have encountered any issues or suspicious activity.
The attack, which targeted legitimate extension developers using phishing schemes, follows a recent warning to billions of Google email users. The advanced phishing tool allows hackers to steal a victim’s web security data in real time by tricking the victim into thinking they are logged into their accounts normally and sending them to a fake web page that looks exactly like their browser.
In addition to removing these extensions and checking the permissions for those you keep, tech experts strongly recommend that anyone who has installed these programs use antivirus software to scan their computers for signs of malware or other viruses.
Read also: Elon Musk opens access to the “smartest” AI Grok 3
