Particle.news
Download on the App Store
3 ARTICLES
·
last mo.

35 Chrome Extensions with Spyware Potential Found on 4 Million Devices

Security researcher John Tuckner reveals suspicious extensions with obfuscated code and remote control capabilities, raising concerns over Chrome Web Store's vetting process.

Image
Google Chrome
Image
Image

Overview

  • John Tuckner of Secure Annex has identified 35 Chrome extensions with over 4 million installs that exhibit spyware or infostealer-like behavior.
  • The extensions share obfuscated code, connect to similar servers, and require sensitive permissions, including access to cookies and browsing activity.
  • Most of these extensions are unlisted, making them accessible only via direct URLs, yet 10 have been awarded Google's 'Featured' badge for trustworthiness.
  • Some extensions, like Fire Shield Extension Protection, claim to enhance security but instead display suspicious behaviors, including tracking user activity.
  • Users are strongly advised to uninstall these extensions immediately due to significant privacy and security risks.