Chrome users downloaded more than 280 million malicious extensions in three years 12:28

Researchers from Stanford University and the Helmholtz Center for Information Security (CISPA) found that 280 million users installed infected Chrome extensions over three years. Also on Google claimsLess than 1% of all installations in the extension repository contain malware, reports TechSpot portal.

According to the CISPA report, from July 2020 to February 2023, approximately 346 million users installed extensions labeled as SNE that could pose threats and contain malware, violate Chrome Web Store policies, or contain vulnerable code. It was noted that 63 million of these facilities did not pose a threat.

Some dangerous extensions remain in the store for a long time. TeleApp, for example, existed for 8.5 years before being removed in June 2022. In total, there are over 250 thousand extensions in the Chrome store.

The researchers also noted that user ratings do not help identify malicious extensions. Users do not give SNE low scores, making them difficult to recognize. Positive comments are probably left by bots, but half of SNE has no comments at all.

Google says its security team provides users with personalized summaries of installed extensions, verifies them before publishing them, and provides ongoing monitoring. However, researchers point out that inadequate monitoring allowed dangerous extensions to remain in the store after vulnerabilities were discovered.

Previously reportedApple discovered a secret laboratory among residential buildings.

What are you thinking?



Source: Gazeta

Popular

More from author

California governor orders homeless camps removed from state streets 9:09 p.m.

California Governor Gavin Newsom has signed an executive order requiring officials to clear the city's streets of homeless encampments, the publication reports San Francisco...

It was learned that the salaries of IT specialists in Russia were cut 16:41

Russian IT specialists started earning less this year. This was reported by DEA News With reference to data from HR holding Ventra. It was noted...

Unidentified persons threatened to blow up a residential building in Dagestan 21:14

In Kaspiysk, Dagestan, unidentified people have barricaded themselves in a multi-storey residential building and are threatening to explode. This was reported by Telegram channel...

Military use envisaged for Chinese spacecraft 19:45

An unmanned, reusable spacecraft developed in China could be used for military purposes, the agency reports Reuters. "It obviously has military applications, including, for example,...