![]() This extension was eventually pulled out of the Chrome web store after it had been downloaded close to a thousand times. We noticed that it silently talked back to this domain to retrieve additional commands and updates at regular intervals. Registrant Organization: WhoisGuard, Inc. There was little if nothing about any calculator in there but rather a set of scripts to create a proxy and perform web requests interceptions.Įach browser's tab was hooked and routed through the following domain: bestex9.xyz Registrant Name: WhoisGuard Protected ![]() It also required invasive permissions ( Read and change all your data on the websites you visit) for being a calculator:Ī closer look at this app confirmed our suspicions. Although it was listed in the Chrome store, it had no screenshot information or reviews. This extension had some telltale signs of being malicious beyond its aggressive distribution method. As soon as the user moved the mouse close to the address bar or near the close button, an annoying dialog accompanied by a stern audio message would pop up. There was no clean way of closing the window and refusing to install this program. This makes it an ideal situation for threat actors to aggressively push bogus apps and use a little bit of social engineering to coerce end users into downloading malware laden extensions.Ĭase in point, we recently came across a malvertising incident pushing a site forcing us to install a Chrome extension called iCalc. Additionally, a lot of people don't really understand what those mean and will install these extensions and forget about them. One of the main points of entry is via rogue browser extensions which are increasingly becoming a problem and are being leveraged in various types of attacks ranging from data theft, spying, pop up ads and more.Ĭhrome extensions are very much like Android Apps as they require certain permissions (access to your contacts, microphone, camera, etc.) and unfortunately more often than not, they require more rights than they ought to have. ![]() By extension, ChromeOS which powers the affordable Chromebooks is indeed one of the safest systems one can get these days.Įven though the surface of attack is smaller than that of a typical Windows PC, online crooks will always find a way to abuse the system. The popular Google Chrome browser has some of the best security tools baked in with features such as Safebrowsing which protects users from malicious websites.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |