Security Issues with Chrome Browser Extensions

New Reports Reveal Security Issues with Chrome Browser Extensions

Several browser extensions have been flagged as potentially harmful and recommended for removal. These extensions can negatively impact your browser's performance and compromise your privacy. Here are some notable ones that you should consider removing:

1. Hola VPN: This extension has been known to hijack user bandwidth and sell it, leading to potential privacy and security issues.
2. The Great Suspender: While originally popular for saving memory, the extension was found to have been sold to an unknown party that included malicious code.
3. Hover Zoom: This image zoom tool was discovered to be collecting user data and browsing history.
4. Fairshare Unlock: Known for injecting ads and tracking user activity.
5. NanoCore: It poses as a helpful extension but collects sensitive information and can install other malicious software.
6. User-Agent Switcher for Chrome: This can be used to track and steal your data by changing your user-agent string.

To remove these or any other suspicious extensions, follow these steps:

1. Open your browser and go to the extensions management page (usually found in the menu under "More tools" > "Extensions").
2. Review the list of installed extensions.
3. Click "Remove" on any extension you do not recognize or trust.

Additionally, keep an eye on unusual browser behavior such as an increase in ads, slower performance, or unexpected redirects, which can also indicate the presence of malicious extensions.

Moreover, If you have these extensions it is advisable to remove them immediately:

1. Direct Message for Instagram
2. DM for Instagram
3. Invisible mode for Instagram Direct Message
4. Downloader for Instagram
5. App Phone for Instagram
6. Stories for Instagram
7. Universal Video Downloader
8. Video Downloader for FaceBook™
9. Vimeo™ Video Downloader
10. Zoomer for Instagram and FaceBook
11. VK UnBlock. Works fast.
12. Odnoklassniki UnBlock. Works quickly.
13. Upload photo to Instagram™
14. Spotify Music Downloader
15. The New York Times News

For detailed instructions on managing and removing extensions, you can refer to resources like AVG's guide on how to identify and remove unsafe extensions and SafetyDetectives' comprehensive guide on securing your Chrome browser​ (AVG.com)​​ (SafetyDetectives)​.

Recent reports have highlighted significant security concerns with Chrome browser extensions. According to Google, less than 1% of all Chrome extension installations contain malware. However, researchers from Stanford University and the CISPA Helmholtz Center for Information Security estimate that 280 million users have installed extensions with malware over a three-year period. These differing views underscore the potential risks associated with browser extensions.

Understanding Browser Extensions

For those unfamiliar, a browser extension is a small software program that you can add to your web browser (like Google Chrome) to perform specific tasks or enhance functionality. Examples include ad blockers, password managers, and shopping assistants. While extensions can improve your browsing experience, they can also pose security risks if not properly vetted.

The Risks of Browser Extensions

Browser extensions can have numerous security breaches. Some of these include:

1. Capturing Passwords: Malicious extensions can record your keystrokes or intercept data as you type, including passwords. This can lead to unauthorized access to personal and corporate accounts.
2. Accessing Personal Information: Extensions can request permissions to access your data on websites, including personal information like your name, address, and credit card numbers.
3. Altering Web Pages: Some extensions can modify the content of the web pages you visit, potentially inserting malicious links or displaying fraudulent information.
4. Spying on Browsing Activity: Extensions can track your browsing history and behavior, which can be sold to third parties or used for malicious purposes.

Google's View on Browser Extension Safety

Google claims that out of the 250,000+ extensions available in the Chrome Web Store, less than 1% contain malware. They emphasize their rigorous review process, which includes automated checks and human reviews to detect and remove harmful extensions. Google also provides tools like the safety check panel on the extensions page to alert users about risky extensions.

Researchers' Findings on Malware in Extensions

Despite Google's assurances, the Stanford University and CISPA Helmholtz Center study found a concerning number of extensions with security issues. Between July 2020 and February 2023, over 346 million users installed problematic extensions. After removing some based on policy violations and vulnerable code, the researchers still found 280 million installs containing malware.

The study showed that malicious extensions often request excessive permissions, increasing their potential to harm users. These extensions can remain available on the Chrome Web Store for extended periods before being detected and removed.

How to Protect Yourself from Malicious Extensions

Given the potential risks, it's crucial to take proactive steps to protect yourself:

1. Review Before Installing: Always read about what an extension does and who developed it before installing it. Check reviews and ratings to gauge its reliability.
2. Uninstall Unused Extensions: Regularly review and remove extensions you no longer use. This reduces the number of potential security risks.
3. Limit Permissions: Be cautious about the permissions you grant to extensions. Only allow access to the sites and data they need to function.
4. Enable Enhanced Protection: Turn on Chrome’s Safe Browsing Enhanced Protection mode. This provides extra security against phishing, malware, and harmful extensions.

Acknowledging Local Banks' Efforts

It's also worth acknowledging the robust security measures implemented by local banks. Many banks have adopted two-factor authentication, regularly prompt users to change their passwords, and provide alerts to help users stay secure. These measures significantly contribute to the safety of online banking.

---

Extension: Understanding and Mitigating the Risks of Browser Extensions

What Are Browser Extensions?

A browser extension is a small software application designed to enhance the functionality of a web browser. Think of it as a tool that adds extra features to your browser, like blocking ads, saving passwords, or helping with online shopping. These extensions can make your browsing experience more convenient and personalized.

However, while they can be useful, browser extensions also come with risks. Some extensions, especially those from untrusted sources, can be harmful. They might collect your personal information, track your online activities, or even install malware on your computer.

How Do Browser Extensions Pose Security Risks?

1. Data Theft: Malicious browser extensions can steal sensitive information stored in your browser, such as login credentials, credit card details, and personal information.
2. Financial Loss: Cybercriminals can use these extensions to target financial institutions, leading to significant financial losses for individuals and businesses.
3. System Compromise: Some extensions can compromise the security of your entire system, giving attackers unauthorized access and control over your device.
4. Spreading Malware: Malicious extensions can act as a gateway for spreading other types of malicious software, increasing the risk of widespread infection.
5. Damage to Reputation: For businesses, the use of malicious extensions can lead to a loss of trust and damage to their reputation.

Real-World Examples of Malicious Extensions

In January 2018, a security company called ICEBERG reported that four malicious extensions from the Chrome Web Store affected half a million users. These extensions had been used to steal data and compromise security. This incident underscores the importance of carefully vetting and monitoring browser extensions.

Steps to Ensure Safe Use of Browser Extensions

1. Install from Trusted Sources: Always download extensions from official stores like the Chrome Web Store. Check the developer’s reputation, read user reviews, and look at ratings before installing.
2. Review Permissions: Be cautious about the permissions an extension requests. Extensions that ask for access to your data on many websites or permissions that seem unnecessary should be avoided.
3. Regularly Update and Monitor Extensions: Keep your extensions up to date and regularly review them. Remove any extensions you no longer use.
4. Use Security Tools: Enable features like Chrome’s Safe Browsing Enhanced Protection mode and use antivirus software to help detect and prevent malicious activity.

By understanding what browser extensions are and how they can pose risks, you can take steps to protect your personal and business information. Stay informed, be cautious, and regularly review your browser extensions to maintain a secure online environment.

---

Even-though this issue has come into the limelight again in recent times, Michael Perrigo reported on malicious Chrome extensions that have stolen user data in 2020. The article lists 15 specific Chrome extensions, which users are advised to remove immediately due to security risks. These extensions primarily target Facebook and Instagram users, redirecting their traffic to ads and phishing sites and collecting personal data like birth dates, email addresses, and browsing data. Some of these extensions even have the ability to download malware directly onto users' devices.

Here are the extensions mentioned in the article:

1. Direct Message for Instagram
2. DM for Instagram
3. Invisible mode for Instagram Direct Message
4. Downloader for Instagram
5. App Phone for Instagram
6. Stories for Instagram
7. Universal Video Downloader
8. Video Downloader for FaceBook™
9. Vimeo™ Video Downloader
10. Zoomer for Instagram and FaceBook
11. VK UnBlock. Works fast.
12. Odnoklassniki UnBlock. Works quickly.
13. Upload photo to Instagram™
14. Spotify Music Downloader
15. The New York Times News

These extensions have been reported for redirecting user traffic, collecting personal data, and potentially downloading malware. Users are highly encouraged to remove these extensions to protect their privacy and security.

Extension on the Article:

The Threat of Malicious Browser Extensions

In recent times, browser extensions have become a double-edged sword. While they can enhance the browsing experience by adding useful features, they also pose significant security risks. Malicious extensions can stealthily collect sensitive information, redirect traffic, and even download harmful software onto devices.

Understanding Browser Extensions

A browser extension is a small software application designed to add functionalities to a web browser. These can range from blocking ads to managing cookies, enhancing productivity, or even customizing the appearance of web pages. However, their deep integration with the browser and extensive permissions can be exploited.

The Dangers of Malicious Extensions

Malicious extensions are particularly dangerous because they can:

• Steal Personal Information: They can capture sensitive data such as login credentials, credit card details, and personal information.
• Redirect Traffic: They can redirect your browser to phishing sites or ads, generating revenue for cybercriminals.
• Download Malware: Some extensions have the ability to download and execute malware, compromising the security of your device.
• Monitor Browsing Habits: They can track your browsing history, which can be used to build a profile on you for targeted attacks or sold to third parties.

Recent Findings and Recommendations

According to the article by Michael Perrigo, Avast researchers have identified 15 malicious extensions that should be removed immediately. These extensions were found to be collecting personal data and redirecting users to phishing sites. Despite the ongoing efforts by Google to secure the Chrome Web Store, some of these extensions are still available for download, posing a risk to millions of users.

How to Protect Yourself

To ensure your safety while using browser extensions, consider the following tips:

1. Install Extensions from Trusted Sources: Only download extensions from official web stores and reputable developers.
2. Review Permissions: Be cautious of extensions that request excessive permissions.
3. Read Reviews and Ratings: Check user feedback to identify potential security concerns.
4. Regularly Audit Installed Extensions: Periodically review and remove extensions you no longer use or recognize.
5. Use Antivirus Protection: Employ security software to detect and neutralize threats from malicious extensions.

Again let me tell you that browser extensions can greatly enhance your web experience, but they also come with risks. Stay informed about the potential dangers and take proactive steps to protect your data and privacy. By following the above recommendations, you can enjoy the benefits of browser extensions without falling victim to malicious activities.

Written by : Sanjaya Gunasiri

Copyright © 2023 Pragmatic Engineering. All rights reserved.