Be cautious while installing Google Chrome extensions: CERT-In
PTI, Jul 1, 2020, 12:52 PM IST
New Delhi: Internet users should exercise caution while installing Google Chrome extensions as the company has removed over 100 malicious links after they were found collecting “sensitive” user data, country’s cybersecurity agency said on Wednesday.
The Computer Emergency Response Team of India (CERT-In), the national technology arm to combat cyberattacks and guard the Indian cyberspace, said it has also been found that these extensions contained code to bypass Google Chrome’s web store security scans.
The malicious extensions had the ability to take screenshots, read the clipboard, harvest authentication cookies or grab user keystrokes to read passwords and other confidential information, it said.
“It has been reported that Google has removed 106 extensions of the Google Chrome browser from the chrome web store which were found collecting sensitive user data,” the agency said in the advisory.
“These extensions, reportedly posed as tools to improve web searches, convert files between different formats as security scanners and more,” it added.
The federal cybersecurity agency suggested users uninstall Google Chrome extensions with IDs given in the IOCs (organisational chart) section.
Users can visit the chrome extensions page and subsequently enable developer mode to see if they have installed any of the malicious extensions and then remove them from their browsers, it said.
The agency advised Internet users to only install extensions which are absolutely needed and refer user reviews before doing so.
They should uninstall extensions which are not in use, it said, adding that users should not install extensions from unverified sources.
Udayavani is now on Telegram. Click here to join our channel and stay updated with the latest news.
Top News
Related Articles More
Big tech job cuts keep coming; Zoom latest to trim headcount
Google to launch ChatGPT competitor ‘Bard’: Sundar Pichai
Samsung gets Galaxy S23 orders worth Rs 1,400 cr on first day of pre-booking
Google hopes ”Bard” will outsmart ChatGPT, Microsoft in AI
eMudhra launches emSign; becomes the first and only Indian provider to issue SSL/TLS certificates
MUST WATCH
Latest Additions
Temple priest confronts Kumaraswamy over his “anti Brahmin” remarks
Farmers need to link bank account with Aadhaar by Feb 10 for getting benefits under PM Kisan
Digital currency has 50,000 users, 5,000 merchants: RBI
Karnataka Cong chief gets ED summons, daughter served CBI notice
Kharge invokes Vajpayee’s ‘raj dharma’ remark in RS, BJP members protest