Breach Detection BREACH DETECTION

A free extension to Google Chrome that has been downloaded by 1.3 million users has been caught stealing personal information and sending it back to a single server in the US.

The code was hiding in an app called ‘Webpage Screenshot’, available from the official Chrome store, which has now been removed. The rogue extension sent information visible in the user's page title, to the mysterious American IP address, say researchers, though “what happens to the personal data and the motives for wanting it sent to the US server is anyone's guess.”

Adware disguised as apps or downloads are nothing new, and now new research from Google, due to be published at the IEEE Symposium on Security and Prviacy next month, has revealed that around 5% of people accessing Google every day have been caught by at least one of them, amounting to over 14 million users. As a result of the findings, Google has removed nearly 200 malicious extensions from its Chrome store.

You can read the full story on Information Age here.

Share this blog post

Products
USA Offices
New Net Technologies Ltd
Naples
9128 Strada Place
Naples, Florida, 34108
Atlanta
201 17th Street, Suite 300
Atlanta, Georgia, 30363.

Tel: 1-888-898-0674
email USinfo@nntws.com
NNT Logo
UK Office
New Net Technologies Ltd
Spectrum House, Dunstable Road
Redbourn,
St Albans

Herts
AL3 7PR

Tel: 08456 585 005
Fax: 08456 122 031
email info@newnettechnologies.com
Connect with NNT
Google+ Linkedin Twitter - Change Tracker Facebook rss feed YouTube
Sign up to NNT's IT security and compliance monthly newsletter. Get breaking security news, how-to tips, trends and commentary direct to your inbox.

Sign up to the NNT newsletter