Anyone who uses Chrome to check the web and send emails needs to be on high alert. The world’s most popular web browser is coming under attack from a new type of hack that can leave users being bombarded by adverts and seeing their search results hijacked by cyber thieves. The worrying threat was first discovered by cybersecurity guru Wladimir Palant who found a batch of malicious Chrome extensions hidden on the Web Store.
Since his finding was made public, the experts at Avast say they have dug a little deeper and have now found a total of 32 add-ons that cause a serious nuisance to anyone who installs them.
It appears that once added to Google’s browser, the extensions set about showing annoying adverts and can even hijack search results to display sponsored links, paid search results and potentially malicious links.
For those not aware, Chrome add-ons are incredibly popular as they can change the way the browser behaves, block adverts and improve productivity.
It’s a worrying discovery made all the more serious by the number of downloads that they may have already received. It’s thought the malicious sofware may have been installed millions of times by users across the globe.
So how have hackers managed to evade the strict security measures? According to Avast, it seems likely that the extensions themselves are designed to provide legitimate functionality, which makes them appear harmless at first glance.
However, once installed they are then able to drop their vicious payload which begins the bombardment of ads.
Avast is now saying this is a good time to stay aware and make sure users only install add-ons that are from a reputable source.
“This example is a reminder that individuals must use caution when installing extensions – even those available on official platforms like the Chrome Web Store. A rule of thumb: Always check the developer’s reputation and read reviews before installing an extension. Also, be wary of extensions that request excessive permissions or seem to have unrelated functionalities.
We will continue to monitor this situation and provide updates as we learn more. Our commitment to online security is unwavering, and we are dedicated to keeping our users informed about the latest threats and how to stay protected.”
You can find out more about the malicious extension threat via Avast’s blog.
For all the latest Technology News Click Here
For the latest news and updates, follow us on Google News.
