light bulb

Did You Know?



Reply
Posts: 4,437
Topics: 2,763
Kudos: 5,436
Registered: ‎06-12-2013

Malicious browser extensions pose a serious threat and defenses are lacking

[ Edited ]

Many security products offer inadequate protection against malicious browser extensions, a researcher has found.

The number of malicious browser extensions has significantly increased in the past year but  many security products fail to offer adequate protection against them, while others are simply not designed to do so, according to a security researcher.

Attackers have already used such extensions to perform click fraud by inserting rogue advertisements into websites or by hijacking search queries, but research has shown that this type of malware has the potential to cause much more damage.

Last year Zoltan Balazs, an IT security consultant with professional services firm Deloitte in Hungary, created a proof-of-concept malicious extension that could be controlled remotely by an attacker and could steal authentication credentials, hijack accounts, modify locally displayed Web pages, take screenshots through the computer's webcam, bypass two-factor authentication systems and even download and execute malicious files on a victim's computer.

 

Full Article

Sr. Community Leader

Posts: 8,458
Topics: 581
Kudos: 7,047
Registered: ‎02-03-2012

Re: Malicious browser extensions pose a serious threat and defenses are lacking

Good thing we use WSA and it's Idenity Shield! egyptian.gif

 

"Isolate untrusted browser add-ons from data Blocks a browser add-on (browser helper object) from stealing data. While most browser add-ons are legitimate, some can display ads, track your Internet activity, or hijack your home page."

 

https://detail.webrootanywhere.com/agenthelp.asp?n=Managing_protected_websites

 

Daniel :smileywink:

coollogo_com-133794099.gif


asapvip.png  SigSVIP.png EPA.png


Webroot® SecureAnywhere™ Internet Security Complete Beta v8.0.7.33 on my main system Windows 7 Ultimate 64bit & on Win XP 32bit, Win Vista 32bit, Win 7 32bit, Win 8.1 Pro 32bit & 64bit, Win 10 Preview 32bit & 64bit Build 9926 all on VM's also on my HTC One M8 Android Lollipop 5.0.1 Phone v3.6.0.6652.


MVP.gif.png Microsoft® MVP Consumer Security


Twitter.png Untitled-1.png Community-Badges-BetaTester.png