Many assume all extensions on Chrome Web Store are safe, but that is untrue. In fact, Google platforms malicious web extensions that seek to steal user information or bombard users with ads. Even though the Chrome Web Store employs tools to detect malicious extensions, some bypass the safeguards and are available for Chrome users to download.
These malicious Chrome web extensions can be challenging if your company allows remote work. Unsuspecting employees may install some of these extensions and inadvertently compromise corporate data. Understanding the importance of browser security for your organization, LayerX discusses malicious Chrome web extensions to avoid in 2023.
Details of malicious Chrome web extensions
In mid-May 2023, cyber security researcher, Wladimir Palant, wrote about the popular Chrome web extension, PDF Toolbox, containing obfuscated malicious code. Weeks later, Palant identified 34 malicious extensions with 87 million users, and Google removed all of them.
Following Palant’s discovery, cyber security company Avast verified the threats and discovered 32 malicious extensions with 75 million combined installs on the Chrome Web Store. Despite Google removing the reported extensions from the store, LayerX found that the installations remain, meaning that whatever threats they pose remain active.
Avast says it is protecting its users by blocking the malicious extensions’ backdoor communication. Doing so allows the browser extension’s non-malicious portion to work as intended while neutralizing the malicious component. However, not all users have such protection.
Hence, we will highlight the identified malicious web extensions below so that you can avoid them. Here are identified malicious Chrome web extensions:
- Autoskip for YouTube
- Soundboost
- Crystal Ad block
- Brisk VPN
- Clipboard Helper
- Maxi Refresher
- Quick Translation
- Easyview Reader view
- PDF toolbox
- Epsilon Ad blocker
- Craft Cursors
- Alfablocker ad blocker
- Zoom Plus
- Base Image Downloader
- Clickish fun cursors
- Cursor-A custom cursor
- Amazing Dark Mode
- Maximum Color Changer for Youtube
- Awesome Auto Refresh
- Venus Adblock
- Adblock Dragon
- Readl Reader mode
- Volume Frenzy
- Image download center
- Font Customizer
- Easy Undo Closed Tabs
- Screence screen recorder
- OneCleaner
- Repeat button
- Leap Video Downloader
- Tap Image Downloader
- Qspeed Video Speed Controller
- HyperVolume
- Light picture-in-picture
Effects of Malicious Chrome web extensions
Malicious browser extensions are typically designed to deliver legitimate functionality, making them appear harmless/safe at first glance. But when you look harder, you discover an obfuscated code of malicious origin within their code. Here are the effects of such malicious codes:
- Unwanted ads: The final payload of the malicious web extensions appears to be an adware that sends unwanted ads to users. These ads may redirect users to malicious websites where they can unknowingly download malware.
- Altered search results: Another payload linked to malicious extensions is a search result hijacker that influences search experiences by displaying paid search results, potentially malicious links, and sponsored links. A few reviews on the Image Download Center extension mention it being malicious and redirecting search results.
Reviews reporting the malicious nature of Image Download Center on Chrome Web Store (Wladimir Palant)
- Unknown threats: After cyber security researcher Palant detected malicious code in PDF Toolbox, he admitted that he did not know what it could do because he didn’t see it in action. It is not clear when or whether the code becomes active, but the unknowns make a web extension like PDF Toolbox scary. The best way for an individual or organization to deal with such extensions is to avoid them — best not to find out the threats.
How to detect Malicious Chrome web extensions
Palant and Avast’s research does not provide a definitive list of malicious extensions on the Chrome Web Store, indicating there may well be more. Hence, it would be a mistake not to mandate employees to check extensions for suspicious activity before downloading them.
Below, we will explain how to determine a suspicious/malicious Chrome extension:
- Analyze a web extension’s reviews: Check whether users have complained about the extension being malicious.
- Pay attention to permission requests: Malicious extensions may request permission to access personal information or unnecessary programs.
- Verify extension owners: Where possible, install extensions created and owned by popular companies to reduce the risk of malware downloads.
- Keep Chrome and devices updated: Operating systems and browsers’ updates include new protections to help identify malicious extensions.
- Install antivirus software: It will automatically detect and notify you of any malicious activity by a web extension. The software may also block the malicious component of the extension.
How to remove malicious extensions from the Chrome browser
If you’ve detected a suspicious or malicious extension on your browser, remove it with the following steps:
- Launch Chrome.
- Open Chrome settings through the three vertical dots in the browser’s upper right corner.
- Click More Tools, and a dropdown will open.
- Tap Extensions.
- Identify the extension you are removing by scrolling down to it or searching for its name with the “search extensions” box at the top of your screen.
- Select Remove below the extension.
- Tap Remove again in the pop-up screen.
Wrapping up
As we mentioned earlier, Google’s removal of malicious extensions from the Chrome Web Store does not automatically solve the problem. By removing the extensions from the store, they are unavailable for installation but remain active on browsers that already downloaded them. So, if you have one of them, you should manually eliminate the risk.
As Palant suggested, there are probably more than 34 malicious extensions on the Chrome Web Store because his research was based on a sample of about 1,600 extensions — not all of the store’s contents.
Therefore, we recommend checking extensions before you install and removing suspicious ones before they become a problem. Mandate your employees to take these steps to ensure browser security in your organization.
how to buy priligy in usa reviews Double blind, placebo controlled trial to evaluate the effectiveness of polypodium leucotomos extract in the treatment of melasma in asian skin a pilot study
can i buy cheap cytotec without insurance We are not simply looking for it to fix the problem however, as the resulting high testosterone level can itself trigger negative feedback inhibition at the hypothalamus
Mexican Easy Pharm: Mexican Easy Pharm – mexican pharmaceuticals online
mexico drug stores pharmacies https://mexicaneasypharm.com/# buying prescription drugs in mexico
buying prescription drugs in mexico
https://semapharm24.shop/# semaglutide tablets for weight loss
prednisone online
http://cytpharm.com/# Cyt Pharm
buy prednisone 20mg without a prescription best price
https://predpharm.com/# Pred Pharm
30mg prednisone
https://cytpharm.com/# buy cytotec online
prednisone 7.5 mg
http://cytpharm.com/# Cyt Pharm
prednisone 5 mg tablet
http://semapharm24.com/# buy rybelsus online
prednisone 40mg
https://cytpharm.shop/# Cyt Pharm
over the counter prednisone pills
https://predpharm.shop/# PredPharm
prednisone tablets
http://dappharm.com/# dap pharm
prednisone 60 mg tablet
https://cytpharm.com/# CytPharm
buy prednisone mexico
https://farmatadalitaly.com/# comprare farmaci online con ricetta
comprare farmaci online all’estero
http://farmabrufen.com/# BRUFEN prezzo
acquisto farmaci con ricetta
Farmacie on line spedizione gratuita: FarmTadalItaly – acquistare farmaci senza ricetta
farmacia online
farmacie online sicure http://farmaprodotti.com/# acquisto farmaci con ricetta
Farmacia online miglior prezzo
La competencia entre casinos beneficia a los jugadores.: jugabet chile – jugabet casino
Some casinos feature themed gaming areas.: taya777 – taya777 login
https://phmacao.life/# Gambling regulations are strictly enforced in casinos.
Resorts provide both gaming and relaxation options.
taya365 com login [url=http://taya365.art/#]taya365.art[/url] Entertainment shows are common in casinos.
Slot machines attract players with big jackpots. http://jugabet.xyz/# Los casinos celebran festivales de juego anualmente.
http://winchile.pro/# Los jugadores disfrutan del pГіker en lГnea.
Players enjoy both fun and excitement in casinos.
Casino visits are a popular tourist attraction.: taya777 login – taya777
Gambling can be a social activity here.: taya365.art – taya365.art
http://winchile.pro/# Muchos casinos ofrecen restaurantes y bares.
Many casinos offer luxurious amenities and services.
A variety of gaming options cater to everyone.: taya365 com login – taya365 login
Los jugadores deben conocer las reglas.: winchile – win chile
taya777 app [url=http://taya777.icu/#]taya777 login[/url] Many casinos host charity events and fundraisers.
http://phmacao.life/# Slot machines feature various exciting themes.
Some casinos feature themed gaming areas.
Las reservas en lГnea son fГЎciles y rГЎpidas.: jugabet chile – jugabet.xyz
Las aplicaciones mГіviles permiten jugar en cualquier lugar.: winchile casino – winchile
http://phmacao.life/# п»їCasinos in the Philippines are highly popular.
A variety of gaming options cater to everyone.
Some casinos have luxurious spa facilities. http://phtaya.tech/# Players often share tips and strategies.
taya777 login [url=http://taya777.icu/#]taya777 login[/url] The ambiance is designed to excite players.
Los jugadores disfrutan del pГіker en lГnea.: winchile – winchile
http://taya365.art/# Casinos often host special holiday promotions.
Casinos often host special holiday promotions.
Casino visits are a popular tourist attraction.: phmacao com login – phmacao.life
п»їCasinos in the Philippines are highly popular. https://jugabet.xyz/# п»їLos casinos en Chile son muy populares.
https://phtaya.tech/# The casino scene is constantly evolving.
Resorts provide both gaming and relaxation options.
Many casinos offer luxurious amenities and services.: taya365 com login – taya365.art
Live dealer games enhance the casino experience.: phtaya – phtaya
http://phtaya.tech/# Some casinos have luxurious spa facilities.
Players enjoy a variety of table games.
Players enjoy a variety of table games. https://winchile.pro/# La mГєsica acompaГ±a la experiencia de juego.
winchile casino [url=https://winchile.pro/#]winchile casino[/url] Algunos casinos tienen programas de recompensas.
Casinos often host special holiday promotions.: phmacao.life – phmacao club
Las estrategias son clave en los juegos.: jugabet chile – jugabet
http://phmacao.life/# Resorts provide both gaming and relaxation options.
Casino visits are a popular tourist attraction.
Los torneos de poker generan gran interГ©s.: winchile casino – winchile.pro
Hay casinos en Santiago y ViГ±a del Mar.: winchile.pro – winchile casino
https://taya365.art/# Players must be at least 21 years old.
The Philippines offers a rich gaming culture.
jugabet [url=http://jugabet.xyz/#]jugabet.xyz[/url] Los torneos de poker generan gran interГ©s.
Players can enjoy high-stakes betting options. http://phtaya.tech/# Players enjoy both fun and excitement in casinos.
https://winchile.pro/# La mГєsica acompaГ±a la experiencia de juego.
Slot machines feature various exciting themes.
Online gaming is also growing in popularity.: phmacao – phmacao
La variedad de juegos es impresionante.: jugabet – jugabet casino
https://winchile.pro/# Los pagos son rГЎpidos y seguros.
Casino visits are a popular tourist attraction.
Players must be at least 21 years old.: taya777 register login – taya777
jugabet [url=https://jugabet.xyz/#]jugabet chile[/url] La iluminaciГіn crea un ambiente vibrante.
Slot machines attract players with big jackpots.: phmacao club – phmacao com
https://jugabet.xyz/# Hay casinos en Santiago y ViГ±a del Mar.
Entertainment shows are common in casinos.
Los bonos de bienvenida son generosos.: win chile – winchile casino
Los jugadores disfrutan del pГіker en lГnea.: jugabet casino – jugabet.xyz
Many casinos offer luxurious amenities and services. https://phtaya.tech/# Responsible gaming initiatives are promoted actively.
https://taya777.icu/# Players must be at least 21 years old.
Most casinos offer convenient transportation options.
The casino atmosphere is thrilling and energetic.: taya365 – taya365 com login
jugabet casino [url=https://jugabet.xyz/#]jugabet chile[/url] Los torneos de poker generan gran interГ©s.
Las tragamonedas ofrecen grandes premios.: winchile casino – winchile
Many casinos host charity events and fundraisers.: taya365 com login – taya365 com login
https://taya777.icu/# The Philippines has a vibrant nightlife scene.
Players can enjoy high-stakes betting options.
Poker rooms host exciting tournaments regularly.: phmacao com login – phmacao com login
http://taya777.icu/# Casinos offer delicious dining options on-site.
Entertainment shows are common in casinos.
The poker community is very active here.: taya777 login – taya777.icu
taya777 login [url=http://taya777.icu/#]taya777 login[/url] Slot machines feature various exciting themes.
Many casinos offer luxurious amenities and services.: phtaya casino – phtaya
https://jugabet.xyz/# Los croupiers son amables y profesionales.
Many casinos offer luxurious amenities and services.
Entertainment shows are common in casinos.: taya365 com login – taya365 com login
Slot machines feature various exciting themes.: phtaya.tech – phtaya casino
https://phtaya.tech/# Resorts provide both gaming and relaxation options.
Casino visits are a popular tourist attraction.
Players often share tips and strategies.: phtaya – phtaya.tech
winchile [url=https://winchile.pro/#]win chile[/url] Los casinos organizan eventos especiales regularmente.
https://jugabet.xyz/# La pasiГіn por el juego une a personas.
The Philippines offers a rich gaming culture.
Online gaming is also growing in popularity.: phmacao club – phmacao
The Philippines has several world-class integrated resorts. http://jugabet.xyz/# Los jugadores deben jugar con responsabilidad.
The casino experience is memorable and unique.: phtaya casino – phtaya
http://phmacao.life/# Resorts provide both gaming and relaxation options.
Slot machines feature various exciting themes.
Resorts provide both gaming and relaxation options.: taya365 – taya365 login
http://jugabet.xyz/# Las apuestas deportivas tambiГ©n son populares.
Live music events often accompany gaming nights.
jugabet [url=http://jugabet.xyz/#]jugabet[/url] La mayorГa acepta monedas locales y extranjeras.
Los casinos son lugares de reuniГіn social.: winchile.pro – winchile casino
п»їCasinos in the Philippines are highly popular.: phtaya casino – phtaya
http://winchile.pro/# Los torneos de poker generan gran interГ©s.
The Philippines has a vibrant nightlife scene.
Poker rooms host exciting tournaments regularly.: taya777.icu – taya777
Security measures ensure a safe environment. http://taya365.art/# Players often share tips and strategies.
http://phtaya.tech/# The Philippines offers a rich gaming culture.
Many casinos host charity events and fundraisers.
Muchos casinos ofrecen restaurantes y bares.: winchile.pro – winchile
phtaya login [url=http://phtaya.tech/#]phtaya.tech[/url] Gambling regulations are strictly enforced in casinos.
Casinos offer delicious dining options on-site.: taya777 app – taya777
La pasiГіn por el juego une a personas.: jugabet.xyz – jugabet chile
The casino atmosphere is thrilling and energetic.: phtaya – phtaya casino
pharmacy no prescription required https://xxlmexicanpharm.com/# mexican border pharmacies shipping to usa
easy canadian pharm: canadian world pharmacy – reddit canadian pharmacy
canadian mail order pharmacy: easy canadian pharm – easy canadian pharm
discount drug mart pharmacy [url=https://discountdrugmart.pro/#]best no prescription pharmacy[/url] drug mart
canada pharmacy coupon https://easycanadianpharm.com/# pharmacy com canada
cheapest pharmacy for prescription drugs http://easycanadianpharm.com/# easy canadian pharm
legitimate canadian pharmacies: easy canadian pharm – easy canadian pharm
reliable canadian pharmacy reviews: easy canadian pharm – easy canadian pharm
cheapest pharmacy to fill prescriptions with insurance http://xxlmexicanpharm.com/# xxl mexican pharm
legit non prescription pharmacies https://xxlmexicanpharm.com/# mexican drugstore online
easy canadian pharm: the canadian drugstore – easy canadian pharm
mexican mail order pharmacies: xxl mexican pharm – purple pharmacy mexico price list
family pharmacy [url=https://familypharmacy.company/#]pharmacy no prescription required[/url] Cheapest online pharmacy
online pharmacy no prescription https://familypharmacy.company/# family pharmacy
online pharmacy no prescription https://megaindiapharm.shop/# best online pharmacy india
canadian pharmacy discount coupon: online pharmacy delivery usa – family pharmacy
xxl mexican pharm: buying prescription drugs in mexico – xxl mexican pharm
cheap pharmacy no prescription https://familypharmacy.company/# Best online pharmacy
indian pharmacies safe: Mega India Pharm – india online pharmacy
mexican pharmaceuticals online [url=https://xxlmexicanpharm.com/#]best online pharmacies in mexico[/url] buying prescription drugs in mexico
xxl mexican pharm: xxl mexican pharm – pharmacies in mexico that ship to usa
pharmacy coupons https://xxlmexicanpharm.shop/# xxl mexican pharm
pharmacy online 365 discount code https://discountdrugmart.pro/# buying prescription drugs from canada
Mega India Pharm: Mega India Pharm – Mega India Pharm
international pharmacy no prescription https://xxlmexicanpharm.com/# xxl mexican pharm
drugmart: drugmart – discount drug mart