Google removes over 500 Chrome extensions containing malware

For story suggestions or custom animation requests, contact [email protected] Visit http://archive.nextanimationstudio.com to view News Direct's complete archive of 3D news animations.

RESTRICTIONS: Broadcast: NO USE JAPAN, NO USE TAIWAN Digital: NO USE JAPAN, NO USE TAIWAN
Google has removed hundreds of extensions for their internet browser Chrome after they were found to have malware.

A joint investigation by cyber security firm Duo Security, and Jamila Kaya, an independent security researcher, has identified roughly 70 chrome extensions that contained malicious codes.

The researchers notified Google after which the tech giant conducted its own analysis and found more than 500 chrome extensions that were infected with malware.

According to the report, the chrome extensions would inject malicious advertisements while users are browsing a website or lead users to specific websites such as Macys, Dell, or BestBuy.

In some cases, the extension would take users to a phishing page or a malware download site.

Researchers said that if users weren't regularly checking their chrome extensions, the plugins were able to collect extensive data and generate revenue through the user's device.

Google has since removed the malicious chrome extensions and deactivated them for users who had installed the extensions on their browser, according to ZDNet. The website reports that Google also marked these extensions as "malicious", so users would know to not reactivate them and to get rid of them from their browser.

Google did not mention how many people had been affected by the breach.

RUNDOWN SHOWS:
1. Chrome extensions that had malicious codes
2. How the extensions would spread malware
3. These plugins had the ability to collect data and generate revenue
4. Google has since removed these extensions

VOICEOVER (in English):

"A joint investigation by cyber security firm Duo Security, and Jamila Kaya, an independent security researcher, has identified roughly 70 chrome extensions that contained malicious codes."

"The researchers notified Google after which the tech giant conducted its own analysis and found more than 500 chrome extensions that were infected with malware."

"According to the report, the chrome extensions would inject malicious advertisements while users are browsing a website or lead users to specific websites such as Macys, Dell, or BestBuy."

"In some cases, the extension would take users to a phishing page or a malware download site."

"Researchers said that if users weren't regularly checking their chrome extensions, the plugins were able to collect extensive data and generate revenue through the user's device."

"According to ZDNet, Google has since removed the malicious chrome extensions and deactivated them for users who had installed the extensions on their browser."

"The website reports that Google also marked these extensions as "malicious", so users would know to not reactivate them and to get rid of them from their browser."

SOURCES: ZDNet, Duo Security
https://www.zdnet.com/article/google-removes-500-malicious-chrome-extensions-from-the-web-store/
https://duo.com/labs/research/crxcavator-malvertising-2020