Malicious extensions for Chrome and Edge tracked users’ actions

Koi Security has discovered malicious code in popular browser extensions for Chrome and Edge. These include Unlock Youtube VPN and Unlock Tiktok. These add-ons have already been downloaded more than 2.3 million times.”

Koi Security has found malicious code in popular browser extensions for Chrome and Edge.

Malicious code allows spying on users

Cybersecurity experts have found that malicious code in extensions allows attackers to track users’ activities and potentially steal sensitive information. Exactly how these extensions got moderated in the Google Chrome Web Store and Microsoft Edge Add-ons catalogs remains unclear.

The mere fact that such add-ons are appearing in official stores is troubling: Users expect basic security checks from Google and Microsoft, but in this case, the filters were ineffective.

What users should do

Those who installed Unlock Youtube VPN, Unlock Tiktok or other suspicious extensions are advised to uninstall them immediately, clear their browser cache and reset its settings. They should also change passwords for all important accounts, especially if they were entered through compromised browsers.

It’s not yet known how widespread the data breach was or what types of information may have fallen into the hands of the attackers. However, given the scale of the downloads – more than two million installations – the number of people affected could be significant.

The Malicious Chrome and Edge extensions tracked user activity was first published on ITZine.ru.