GOOGLE Chrome users have been warned over sneaky browser extensions that can see everything you do on the web.
Whether it’s an ad-blocker, spell checker or PDF scanner – browser extensions possess more powers than many regular apps on your smartphone.
In 2019, multiple malicious Chrome extensions were used to intercept people logging into popular sites such as FacebookGetty
Extensions can use the “chrome.webRequest” API, which is regarded as a “critical” risk, experts told CyberNews.
Even popular browser extensions that are considered safe, and downloaded directly from the Chrome Web Store, can put your passwords and data at risk.
Oren Koren, co-founder of cybersecurity firm Veriti, explained: “Everybody nowadays uses the ad-block extension, and it’s massively using the webRequest function.
“This function allows it to intercept five types of data.”
http:// - risk of browsing data interception;https:// – risk of encrypted browsing data interception;ftp:// – risk of exposing login credentials and unauthorized file access (directory listing of the FTP server, username and password passed in the login stage, the ability to track and download files);file:// – risk of disclosing sensitive local files or internal resources (specific internal or external file paths that only the owner has);ws:// – risk for web services that can compromise an organization’s content
Essentially, your ad-blocker can see all the content you send over the web, including your login credentials and the files you download, Koren warned.
And that’s just the ‘safe’ ones.
The internet is riddled with browser extensions that were built for malicious purposes – just like how the Google Play Store can accidentally host spyware apps.
This is because it takes vast amount of time for Google to analyse each app and pull them off the market.
Patrick Harr, CEO of cybersecurity company SlashNext, urged consumers to think beyond phishing scams and actually examine how many permissions they have granted their browser extensions.
“In the current threat landscape, malicious browser extensions are very common, especially as a tool for delivering ransomware,” he said.
“We usually think of ransomware as starting in a phishing email, which certainly is a leading point of origination.
“But bad actors are also skilled at leveraging malicious browser extensions to steal user credentials as a first step in their ultimate goal of deploying ransomware.”
If you really want to have your ad-blocker, translator, or whichever popular extension you’re into – make sure it is from reputable developer and look over exactly what data it collects.
Cyber crooks can use the ‘chrome.webRequest’ API to inject viruses into your PC or lead you to phishing pages, according to Oleksii Yasynskyi, engineering manager of Malware Lab at Moonlock.
While other extensions can be used for spying and collecting personal data, he said.
For example, in 2018, an extension used the “chrome.webRequest” API to steal credit card information.
Then in 2019, multiple malicious Chrome extensions were used to intercept people logging into popular sites such as Facebook and Google.
Best Phone and Gadget tips and hacks
Looking for tips and hacks for your phone? Want to find those secret features within social media apps? We have you covered…
How to delete your Instagram account
What does pending mean on Snapchat?
How to check if you’ve been blocked on WhatsApp
How to drop a pin on Google Maps
How can I change my Facebook password?
How to go live on TikTok
How to clear the cache on an iPhone
What is NFT art?
What is OnlyFans?
What does Meta mean?
Get all the latest WhatsApp, Instagram, Facebook and other tech gadget stories here.
We pay for your stories! Do you have a story for The Sun Online Tech & Science team? Email us at [email protected]