This extension had some telltale signs of being malicious beyond its aggressive distribution method. As soon as the user moved the mouse close to the address bar or near the close button, an annoying dialog accompanied by a stern audio message would pop up. There was no clean way of closing the window and refusing to install this program. This makes it an ideal situation for threat actors to aggressively push bogus apps and use a little bit of social engineering to coerce end users into downloading malware laden extensions.Ĭase in point, we recently came across a malvertising incident pushing a site forcing us to install a Chrome extension called iCalc. Additionally, a lot of people don’t really understand what those mean and will install these extensions and forget about them. One of the main points of entry is via rogue browser extensions which are increasingly becoming a problem and are being leveraged in various types of attacks ranging from data theft, spying, pop up ads and more.Ĭhrome extensions are very much like Android Apps as they require certain permissions (access to your contacts, microphone, camera, etc…) and unfortunately more often than not, they require more rights than they ought to have. By extension, ChromeOS which powers the affordable Chromebooks is indeed one of the safest systems one can get these days.Įven though the surface of attack is smaller than that of a typical Windows PC, online crooks will always find a way to abuse the system. The popular Google Chrome browser has some of the best security tools baked in with features such as Safebrowsing which protects users from malicious websites.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |