Top | |
Newsletter 7/14/2022 |
Back to Contents A Printable PDF of this post is available here. |
Are Bogus Browser Extensions Bumming You Out, Bubala? This week's cybernews began with reports about
rogue Google browser extensions. The rogue extension "is
masquerading as a Google Translate add-on as part of an adware campaign
targeting Russian users of Google Chrome, Opera, and Mozilla Firefox
browsers," reported
The Hacker News, July 8, 2022. Unlike many
browser extension, legitimate or otherwise, this browser bad boy "is
delivered through different Windows executables that install the add-on
on the victim's web browser." The usual method of
delivery of browser extensions is the vendor's "store." Our team recently investigated and resolved a bug affecting certain LastPass extensions. Tavis Ormandy, a security researcher from Google’s Project Zero, responsibly disclosed the issue to us. His report revealed a limited set of circumstances on specific browser extensions that could potentially allow an attacker to create a clickjacking scenario. So browser extensions are the kinds of things you certainly want to take control of. Herein we will look at Google Chrome Extensions tool because that is what most of my clients regularly use; but other browsers act similarly.
Once you have opened the browser extensions tool, you can see exactly what browser extensions are installed.
If in this list, there are browser extensions
you do not recognize, simply click the remove button. Knowing
that forewarned is forearmed. |
Back to Top Gerald Reiff |
Back to Top | next post → |