Technology

#These 5 Popular Chrome Extensions Are Malware: Delete Them Now

#These 5 Popular Chrome Extensions Are Malware: Delete Them Now

“These 5 Popular Chrome Extensions Are Malware: Delete Them Now”

Google Chrome logo on a blue background

Google Chrome extensions can super-charge your browsing experience with more features, but there have been many malicious extensions over the years. Five more bad extensions have been discovered, thanks to a recent security report.

McAfee published a report on Monday detailing five malicious browser extensions available on the Chrome Web Store, including two “Netflix Party” extensions, “FlipShope — Price Tracker Extension,” “Full Page Screenshot Capture — Screenshotting,” and “AutoBuy Flash Sales.” Each of them had more than 20,000 downloads, with over 1,400,000 downloads combined.

Chrome Web Store listing for Full Page image Capture - imageting
One of the malicious extensions, which is also featured by Google.

Each extension listens for page changes in the browser, and each time the user navigates to a new page, the extension sends the page URL to a remote server to check if affiliate revenue code can be injected. Many sites (including How-To Geek) include affiliate code in links to shopping websites, which sometimes provides them with a small cut of revenue. However, most of the offending extensions are not related to buying items at all, and they are injecting the code for all possible pages. McAfee also found evidence that some of the extensions wait 15 days after they are installed to start injecting affiliate code, presumably to avoid initial detection.

Google has been working to crack down on malicious extensions with the new Manifest V3 standard. Compared to the older Manifest V2 technology (which at least one of the extensions is using), Manifest V3 gives people more control over what pages extensions can access. Manifest V3 also blocks remotely hosted code, which would prevent some (but not all) of the behavior reported by McAfee.

The most popular Netflix Party extension, which had over 800,000 users, has since been removed from the Chrome Web Store. The rest of them are still live, and “Full Page Screenshot Capture” still has a “Featured” label on the Store. If you have any of them installed, be sure to remove them. How-To Geek has reached out to Google for comment, and we will update this article when (or if) we get a response.

Source: McAfee
Via: Bleeping Computer

If you liked the article, do not forget to share it with your friends. Follow us on Google News too, click on the star and choose us from your favorites.

For forums sites go to Forum.BuradaBiliyorum.Com

If you want to read more like this article, you can visit our Technology category.

Source

Related Articles

#Add a layer of sophistication to your space with this chair designed for you and your pets

#Add a layer of sophistication to your space with this chair designed for you and your pets

#Apple won’t have to include third-party payments in App Store just now, thanks to a stay

#New $99 RedMagic Watch Boasts 15-Hour Battery, Sport-Focused Fitness Tracking – Review Geek

#How to Find and Delete Old Emails in Gmail

#How to Find and Delete Old Emails in Gmail

Leave a Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button
Close

Please allow ads on our site

Please consider supporting us by disabling your ad blocker!