Researchers at Awake Security have discovered a new spyware effort, which has attacked users through 32 million downloads of extensions to Google’s market-leading Chrome web browser, according to Reuters. This highlights the tech industry’s failure to protect browsers as they are used more for email, payroll and other sensitive functions. Most of the free extensions purported to warn users about questionable websites or convert files from one format to another. Instead, they siphoned off browsing history and data that provided credentials for access to internal business tools. Based on the number of downloads, it was the most far-reaching malicious Chrome store campaign to date. Alphabet Inc’s Google said it removed more than 70 of the malicious add-ons from its official Chrome Web Store after being alerted by the researchers last month.
Experts Comments
Linkedin Message
@Jake Moore, Cybersecurity Specialist, provides expert commentary at @Information Security Buzz.
"Google can’t ever guarantee 100% security on all of their third party add-ons so you must be careful...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-reaction-on-spyware-attacks-32-million-chrome-users
Facebook Message
@Jake Moore, Cybersecurity Specialist, provides expert commentary at @Information Security Buzz.
"Google can’t ever guarantee 100% security on all of their third party add-ons so you must be careful...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-reaction-on-spyware-attacks-32-million-chrome-users
Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Jeff Mills, UK Country Manager, provides expert commentary at @Information Security Buzz.
"Enterprises must be mindful of the vulnerabilities with some extensions..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-reaction-on-spyware-attacks-32-million-chrome-users
Facebook Message
@Jeff Mills, UK Country Manager, provides expert commentary at @Information Security Buzz.
"Enterprises must be mindful of the vulnerabilities with some extensions..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-reaction-on-spyware-attacks-32-million-chrome-users