• Home
  • Apps
  • Apps News
  • CERT In Indian Cyber Security Agency Warns of Malicious Google Chrome Extensions

CERT-In Indian Cyber-Security Agency Warns of Malicious Google Chrome Extensions

CERT-In said the malicious Google Chrome extensions had the ability to take screenshots, read the clipboard, and more.

Share on Facebook Tweet Snapchat Share Reddit Comment
CERT-In Indian Cyber-Security Agency Warns of Malicious Google Chrome Extensions

CERT-In said it has been found that these extensions contained code to bypass Chrome's security scans

Highlights
  • The malicious extensions had the ability to take screenshots
  • They could read the clipboard, and harvest authentication cookies
  • CERT-In advised users to install extensions which are absolutely needed

Internet users should exercise caution while installing Google Chrome extensions as the company has removed over 100 malicious links after they were found collecting "sensitive" user data, country's cyber-security agency said on Wednesday.

The Indian Computer Emergency Response Team of India (CERT-In), the national technology arm to combat cyber-attacks and safeguard Indian cyberspace, said it has also been found that these extensions contained code to bypass Google Chrome's Web store security scans. The malicious extensions had the ability to take screenshots, read the clipboard, harvest authentication cookies or grab user keystrokes to read passwords and other confidential information, it said.

"It has been reported that Google has removed 106 extensions of the Google Chrome browser from the Chrome Web Store which were found collecting sensitive user data," the agency said in the advisory.

"These extensions, reportedly posed as tools to improve Web searches, convert files between different formats as security scanners and more," it added.

The federal cyber-security agency suggested users to uninstall Google Chrome extensions with IDs given in the IOCs (organisational chart) section.

Users can visit the Chrome extensions page and subsequently enable developer mode to see if they have installed any of the malicious extensions and then remove them from their browsers, it said.

The agency advised Internet users to only install extensions which are absolutely needed and refer user reviews before doing so.

They should uninstall extensions which are not in use, it said, adding that users should not install extensions from unverified sources.


WWDC 2020 had a lot of exciting announcements from Apple, but which are the best iOS 14 features for India? We discussed this on Orbital, our weekly technology podcast, which you can subscribe to via Apple Podcasts, Google Podcasts, or RSS, download the episode, or just hit the play button below.

Comments

For the latest tech news and reviews, follow Gadgets 360 on Twitter, Facebook, and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel.

Spotify Premium Duo Expands Worldwide, Costs Rs. 149 in India
Samsung Galaxy M01s Spotted in Google Play Console Listing, Appears to Be Rebranded Galaxy A10s: Report

Related Stories

 
 

Advertisement

Advertisement

© Copyright Red Pixels Ventures Limited 2020. All rights reserved.
Listen to the latest songs, only on JioSaavn.com