Researchers Discover Massive Spyware Condition in Google Chrome Extensions
A spyware may have attacked Google Chrome users which may have happened through 32 million extension downloads. Based on a report by Reuters, Google said it removed more than 70 from the malicious add-ons from the official Chrome Online store after being alerted by the researchers last month.
Most extensions have the freedom and so sometimes many unsuspecting users may not realize that their details like browsing history are now being siphoned by a few from the malicious extensions to unknown sources. Think about the amount of people who use Google Chrome which is undoubtedly the world’s most used and installed browser. There are now about 5 billon Chrome installs on cellular devices its keep is the large numbers of users who share their personal information on Chrome from passwords to non-public data like banking details and browsing history that is seldom cleared by many users.
Google now says it's conscious of the situation and has now removed over 70 extensions from the Chrome Online store. A Google spokesperson told Reuters that “When we are alerted of extensions in the Web Store that violate our policies, we do something and use those incidents as training material to improve our automated and manual analyses.”
The security researchers are saying that it is hard to find out the players behind the spyware as the developers may have submitted the extensions using fake contact information. Another interesting aspect of these malicious extensions is that they were designed to prevent detection by your average antivirus software. As Reuters explains, “If a person used the browser to surf the web on a home computer, it would connect with a series of websites and transmit information, they found. Anyone using a corporate network, which may include security services, wouldn't transmit the sensitive information or even reach the malicious versions from the websites.”
Read the Awake Security report here
While the identities of those developers remain unknown, the domains they used are about 15,000 which linked with each other. These domains according to Awake Security researchers were purchased from an Israeli registrar Galcomm, known formally as CommuniGal Communication Ltd. That said, Galcomm continues to be absolved of any involvement but because the report notes, they should have at least known what was happening. Galcomm owner Moshe Fogel told Reuters that his company didn't have understanding of this by any means. “Galcomm isn't involved, and not in complicity with any malicious activity whatsoever,” you can say precisely the opposite, we cooperate with police force and security bodies to avoid around we are able to.”
Google Chrome extensions security have been a problem for a long time even though Google has taken steps to stem the tide in the past years, the issue persists. It sometimes comes down to the consumer taking personal responsibility.