32 Google Chrome extensions discovered to be posing big security risks, delete them now
Google Chrome is one of the most popular web browsers in the world, but it also comes with some risks. Recently, cybersecurity researchers have uncovered 32 malicious Chrome extensions that have been downloaded by millions of users from the official Chrome Web Store. These extensions can inject unwanted ads, manipulate search results, and even access your files and clipboard without your permission. Here’s what you need to know about these dangerous extensions and how to get rid of them.
What are these extensions and what do they do?
According to cybersecurity firm Avast and researcher Wladimir Palant, these 32 Chrome extensions offer legitimate functionalities such as ad blockers, downloaders, browser themes, recorders, and tab managers. However, they also contain hidden code that can run on any website you visit and perform malicious actions.
Some of the malicious actions include:
Injecting ads into web pages that you visit, which can be annoying and potentially harmful if they lead to phishing or malware sites.
Manipulating search results to promote certain websites or products, which can affect your online experience and trustworthiness of information.
Accessing your files and clipboard, which can compromise your privacy and security. For example, an extension could read your documents, photos, or passwords that you copy and paste.
The researchers say that the purpose of these malicious actions is to monetize the extensions in ways that violate the Chrome Web Store policies. However, it is not clear who is behind these extensions and what they do with the data they collect.
How many users are affected and which extensions are involved?
The researchers claim that these 32 extensions have over 75 million downloads collectively from the Chrome Web Store. However, this number may be inflated as some of the extensions have very few reviews or ratings, which could indicate fake downloads or bots.
Some of the most popular extensions involved are:
Autoskip for Youtube (9 million downloads)
Soundboost (6.9 million downloads)
Crystal Ad block (6.8 million downloads)
Brisk VPN (5.6 million downloads)
Clipboard Helper (3.5 million downloads)
Maxi Refresher (3.5 million downloads)
You can see the full list of the 32 extensions in this image:
How to protect yourself from these extensions?
The good news is that Google has removed most of these extensions from the Chrome Web Store after being notified by the researchers. However, if you have already installed any of these extensions on your browser, you should delete them as soon as possible.
To delete an extension from Chrome, follow these steps:
Click on the three-dot menu icon at the top right corner of the browser window and select More tools > Extensions.
Find the extension that you want to remove and click on the Remove button.
Confirm by clicking on Remove again.
You can also check your installed extensions by typing chrome://extensions in the address bar and hitting Enter.
Additionally, you should be careful when installing new extensions from the Chrome Web Store or other sources. Always check the developer’s reputation and read reviews before installing an extension. Also, be wary of extensions that request excessive permissions or seem to have unrelated functionalities.
Conclusion
Chrome extensions can enhance your browsing experience and productivity, but they can also pose serious security risks if they are malicious or compromised. Therefore, you should always be vigilant and cautious when using them. If you have any doubts or questions about an extension, do not install it or delete it immediately. Stay safe online!
No comments