Popular Chrome extensions have been hijacked by hackers, putting millions of users at risk. Legitimate browser extensions were turned bad through malicious updates, allowing hackers to inject harmful scripts into browsers and steal sensitive data.
Researchers at GitLab Threat Intelligence discovered that many of these malicious extensions were designed to improve browsing experience but requested excessive permissions, including access to any website visited and code injection on web pages. The hackers gained control over the extensions either by hijacking developer accounts or gaining trust from developers through phishing attacks.
The malicious extensions, such as Blipshot, Emoji Keyboard, and WAToolkit, were removed from the Chrome Web Store but still pose a risk to users who have installed them. To protect yourself, it’s essential to regularly check your installed extensions and delete any suspicious ones.
Here are some tips to stay safe:
* Carefully examine permissions requested by extensions before installing.
* Look for external reviews or video reviews instead of relying on ratings alone.
* Regularly audit your installed extensions and remove unused ones.
* Limit the number of extensions installed to lower the risk of malicious ones.
Remember, hackers will continue to spread malicious software, so it’s crucial to practice good cyber hygiene and stay vigilant.
Source: https://www.tomsguide.com/computing/online-security/3-2-million-chrome-users-at-risk-from-malicious-extensions-delete-them-right-now