![]() In this way, they were able to obtain critical info and then share it back to themselves by connecting the user’s browser to their C2 server. See: Clones of popular Adblockers caught ad frauding millions of Chrome users These included requesting permissions that they did not need from users such as access to the user’s clipboard & cookies stored locally. Investigated by an independent security researcher named Jamila Kaya and Duo Security they initially discovered 71 such extensions with 1.7 million installations but then went on to discover an additional 430 after privately notifying Google’s team.Īll of these extensions were hiding their real motive of advertising and exfiltrating user data through various techniques. Recently, it has been found out that over 500 Google Chrome extensions were collecting user data and using it for malicious purposes. ![]() These extensions were already stealing from millions of Chrome users.
0 Comments
Leave a Reply. |