Most browsers offer the option of adding extensions that will add functionality to the browser, however, of course, the threat actors exploit these to carry out various cyber attacks:
Chrome extensions with 1.4 million installs steal browsing data (bleepingcomputer.com)
Here are the extensions that the McAfee researchers discovered:
Netflix Party (mmnbenehknklpbendgmgngeaignppnbe) – 800,000 downloads
Netflix Party 2 (flijfnhifgdcbhglkneplegafminjnhn) – 300,000 downloads
Full Page Screenshot Capture – Screenshotting (pojgkmkfincpdkdgjepkmdekcahmckjp) – 200,000 downloads
FlipShope – Price Tracker Extension (adikhbfjdbjkhelbdnffogkobkekkkej) – 80,000 downloads
AutoBuy Flash Sales (gbnahglfafmhaehbdmjedfhdmimjcbed) – 20,000 downloads
from the Bleeping Computer blog
Just to make things more difficult these extensions do what they say on the tin as well as carrying out the malicious tasks.
Just be vigilant and download and use extensions that you know are safe. How do you do that? Carry out your own due diligence and research to check, if you cannot do it then ask your cyber security consultant to help you. Also have a policy at your organisation describing what software/extensions/apps your people can and cannot download, install and use on your systems – they are yours so protect them!
Clive Catton MSc (Cyber Security) – by-line and other articles
