Techly NewsGet the app

Get the latest tech news

Researcher uncovers network of risky Chrome extensions with over 4 million installs | Many ironically promise to scan Chrome for sketchy browser extensions


John Tucker, founder of browser security firm Secure Annex, discovered the suspicious extensions while assisting a client who had installed one or more for security monitoring. The...

Many present themselves as search assistants, while others pose as ad blockers, security tools, or extension scanners – all mysteriously linked to a single, unused domain. The apps ask users for consent to access sensitive data, including browser tabs and windows, cookies, storage, scripting, alarms, and management APIs. After analyzing it, Tucker discovered a JavaScript file that can upload data and download code and instructions from several shady domains, including one called unknow.com.

Get the Android app

Or read this on r/technology

Read more on:

Photo of Chrome

Chrome

Photo of installs

installs

Related news:

News photo

Researcher uncovers dozens of sketchy Chrome extensions with 4 million installs

News photo

Curl-impersonate: Special build of curl that can impersonate the major browsers

News photo

Chrome for Android is getting extensions, but not like you’d expect

« AI can't stop making up software dependencies and sabotaging everything
Top Stories: iOS 19 and iPhone 17 Pro Rumors, Siri Revamp Turmoil, and More »