Avast found 28 malicious extensions in Chrome and Edge browsers with three million users
Researchers from Avast, a well-known antivirus software company, discovered 28 malicious extensions in the browser extension stores of Google and Microsoft, affecting as many as three million users.
These malicious extensions disguise as tools to help users download content from social media such as Facebook and Instagram or streaming media platforms such as Vimeo and Spotify. However, the malicious code in them allows downloading malicious programs to steal sensitive user data and redirect to ads and phishing websites.
When a user clicks on a URL, these extensions will send the information to the attacker’s server, which sends an instruction to redirect the victim from the real link target to a hijacked URL, then redirects them to the website they want to visit, the user’s privacy is stolen in this process. The attacker will also infiltrate and collect sensitive information such as the user’s date of birth, email address, device information, login time, and even IP address.
The list of detected extensions affected is below:
- Direct Message for Instagram
- DM for Instagram
- Invisible mode for Instagram Direct Message
- Downloader for Instagram
- App Phone for Instagram
- Stories for Instagram
- Universal Video Downloader
- Video Downloader for FaceBook™
- Vimeo™ Video Downloader
- Zoomer for Instagram and FaceBook
- VK UnBlock. Works fast.
- Odnoklassniki UnBlock. Works quickly.
- Upload photo to Instagram™
- Spotify Music Downloader
- The New York Times News
- Direct Message for Instagram™
- Instagram Download Video & Image
- App Phone for Instagram
- Universal Video Downloader
- Video Downloader for FaceBook™
- Vimeo™ Video Downloader
- Volume Controller
- Stories for Instagram
- Upload photo to Instagram™
- Pretty Kitty, The Cat Pet
- Video Downloader for YouTube
- SoundCloud Music Downloader
- Instagram App with Direct Message DM