In the digital age, where our lives are increasingly intertwined with the internet, the importance of cybersecurity cannot be overstated. For the 3.2 million users of Google Chrome, a recent discovery has sounded the alarm bells, prompting an urgent call to action. Cybersecurity experts have identified 16 browser extensions that have been compromised by hackers, and the advice is clear: delete them immediately.
Cybercriminals have recently injected malicious code into several popular Chrome extensions, including Blipshot, Emojis, Colour Changer for YouTube, and Super Dark Mode. This malicious code enables hackers to commit search engine fraud by driving clicks to hacker-controlled websites to generate ad revenue. However, the consequences extend beyond fraudulent clicks; these extensions also pose a serious threat to user privacy by stealing personal data. Users are urged to carefully review their installed extensions and remove any that are compromised.
The list includes Blipshot, Emojis, Colour Changer for YouTube, Super Dark Mode, Video Effects for YouTube, Audio Enhancer, Themes for Chrome, YouTube Picture in Picture, Mike Adblock für Chrome, Emoji Keyboard Emojis for Chrome, Adblocker for Chrome, Adblock for You, Nimble Capture, KProxy, Page Refresh, and Wistia Video Downloader.
The team from GitLab Threat Intelligence, which uncovered the scheme, has noted that while Chrome has removed these extensions from its Web Store, the responsibility to delete them from individual browsers falls on the users. This means that if you’ve downloaded any of these extensions, you must take action to remove them manually.
The best defence against such threats is to be vigilant about the extensions you install. Always vet the programs and read reviews that may highlight potential dangers. Pay particular attention to the ‘permissions’ an extension requests. If an extension is asking for access to sensitive files or devices, it’s worth questioning why and whether it’s necessary for the extension’s functionality.
Chrome extensions are particularly vulnerable because they can interact with any website you visit. This means that once compromised, they can inject malicious code into those websites, spreading the hacker’s reach across your web activity.
For our readers over 50, who may have embraced technology and the convenience of browser extensions, this is a stark reminder of the importance of digital literacy and security. It’s crucial to understand that while these tools can enhance our online experience, they can also pose significant risks if not managed properly.
Tech experts recommend that before installing any new browser extension, you should thoroughly read through the permission settings and check for any feedback from other users about malware or suspicious activity. GitLab Threat Intelligence has revealed that several users of the hijacked extensions had already raised red flags about these programs hacking their browsers.
The recent phishing attacks on legitimate extension developers, which led to this compromise, are part of a larger trend of cyber threats. With phishing schemes being the most frequently reported form of internet crime in 2023, according to the FBI, it’s more important than ever to be cautious.
In addition to removing these compromised extensions, it’s advisable to use antivirus software to scan your computer for any signs of malware or viruses. And remember, always maintain a healthy scepticism about emails that direct you to click on links, especially if they bypass your spam filter.
Have you ever encountered malicious browser extensions? What steps do you take to protect your digital security? Share your thoughts and experiences in the comments below—we’re all in this together, and your insights could help others stay safe online.
Also read: Gmail vs the threats: Is changing apps really the answer?
