The Computer Emergency Response Team (CERT) of India has cautioned users about Chrome extensions.
CERT works to keep the cyber environment of the country safe and secure and has released a notice stating that there are certain Google Chrome extensions that might be dangerous.
CERT has stated that the extensions contain code to bypass chrome’s web store security scans. The organization has asked users to maintain caution as Google has removed over 100 malicious extensions which were found collecting sensitive user information.
The malicious extensions were reported to take screenshots, read the clipboard, monitor key strokes, and harvest authentication cookies, which will all lead to accessing sensitive user information like passwords and bank details.
The extensions were mostly used to improve web searches and convert files from one format to other. Users can visit Google chrome and enable developer option to check the extension IDs and uninstall them.
NPAV recommends users to uninstall all the extensions that are not in use and should avoid installing extensions from unverified sources.
Use NPAV and join us on a mission to secure the cyber world.