- Joined
- May 15, 2016
- Messages
- 4,020
- Likes
- 2,572
- Points
- 1,730
Google Chrome users have installed malware through 32 million downloads of various browser extensions.
Specialists from Awake Security reported a large-scale spyware campaign in Google Chrome, in which criminals registered thousands of domains and used extensions in Chrome to install malware on victims' devices. Users installed spyware through 32,962,951 downloads of various malicious extensions.
Most free extensions are designed to warn users about dubious web sites or convert files from one format to another, however, in some cases, cybercriminals build in them additional functions to monitor user actions in the browser.
According to experts, the detected spyware installation campaign turned out to be the largest for Google Chrome in terms of the number of downloads. Malware developers provided false contact information when they confirmed extensions to Google.
Specialists discovered more than 15 thousand malicious domains associated with each other, which were purchased from a small Galcomm registrar (also known as CommuniGal Communication Ltd) in Israel. According to Galcomm director Moshe Fogel, the company did not know anything about these malicious domains.
Researchers notified Google of their findings, and the company removed more than 70 malware from the official Chrome Web Store.
__________________
Specialists from Awake Security reported a large-scale spyware campaign in Google Chrome, in which criminals registered thousands of domains and used extensions in Chrome to install malware on victims' devices. Users installed spyware through 32,962,951 downloads of various malicious extensions.
Most free extensions are designed to warn users about dubious web sites or convert files from one format to another, however, in some cases, cybercriminals build in them additional functions to monitor user actions in the browser.
According to experts, the detected spyware installation campaign turned out to be the largest for Google Chrome in terms of the number of downloads. Malware developers provided false contact information when they confirmed extensions to Google.
Specialists discovered more than 15 thousand malicious domains associated with each other, which were purchased from a small Galcomm registrar (also known as CommuniGal Communication Ltd) in Israel. According to Galcomm director Moshe Fogel, the company did not know anything about these malicious domains.
Researchers notified Google of their findings, and the company removed more than 70 malware from the official Chrome Web Store.
__________________