The Current Situation
It has come to light that several Google chrome ad blocker extensions may have been hacked. Five ad blocker extensions that have already been installed by over 20 million people have been identified. If you have one of the below you may have been already compromised.
The following examples are simple rip-offs with some lines of code and analytics code added by the so-called “authors”. The tactic is to spam keywords in the extension description in an effort to make to the top search results.
Malicious extensions have access to everything you do on the internet and may allow its architects to obtain the information people enter into the website they visit. Such sensitive information might include passwords, web browser history, and credit card information.The malware infected extensions were discovered by developer Andrey Meshkov. He noted that the creators of the extensions used keywords in the names and descriptions to rank high in the search results, thereby increasing the potential for acquiring more users to download the malware infected ad blocker.
This is not the first time that infected code has slipped past Google’s defenses. In October 2017, Google was forced to purge a fake Adblock extension that had been downloaded by at least 37,000 people. In addition to Chrome users, Google’s Play Store is also frequently targeted by hackers aiming to spread Android banking malware and trojans.
How It Works In Simpler Terms
In essence, this is a botnet composed of browsers infected with the fake AdBlock extensions. The browser will do whatever the command center server owners request it to do.
NSI Recommendations To Protect Yourself From Malicious Extensions
ABOUT NATIONAL SURVEILLANCE AND INTELLIGENCE
National Surveillance and Intelligence are an Australian owned Global Geopolitical Risk and Counter Intelligence Advisory Firm. NSI has an interdisciplinary team of employees and partners in strategic locations around the globe.
PROTECTION AGAINST CYBER ESPIONAGE, CYBER-ATTACKS, RANSOMWARE, INSIDER THREATS, HACKTIVISM
The world is moving at an extremely fast pace, and as such, risks to your information and business are rising. Information from you or your business is a major asset to others, especially identity thieves or competitors. Events of cyber-attack, cyber espionage, ransomware, insider threat and Hacktivism are often reported by the media. Many security-related breaches have been reported over the past 12 months and Australia is not immune to this trend. Most of these events were the result of a weakness/vulnerability in either people, technology or a process. National Surveillance and Intelligence provides specialist network, computer and information technology security consulting which is centered on risk analysis, assessment, and management of IT Security Risks.
OUR BEST IN CLASS SERVICES INCLUDE:
Our experts have provided consultation, and have been interviewed numerous times by major media outlets such as:
NSI is called upon for its expertise by corporations in the Mining, Oil and Gas industries, Financial Institutions, Insurance companies, Law and Accounting firms, Government agencies and High Net-Worth individuals. Our services are available globally with local offices in Sydney, Canberra, Dubai, and Hong Kong. To book a confidential consultation, feel free to contact our team.