1.3 mn users faced browser extension threats in H1 of 2022: Researchers

Kaspersky researchers analysed what risks innocent-looking browser extensions pose to users and the activities of cybercriminals hiding threats under add-ons

Google
Google
IANS New Delhi
2 min read Last Updated : Aug 18 2022 | 3:44 PM IST

Cyber-security researchers said on Thursday that more than 1.3 million users were affected by threats hiding in browser extensions in the first half of 2022.

The figure is over 70 per cent of the number of users affected by the same threat throughout 2021.

Kaspersky researchers analysed what risks innocent-looking browser extensions pose to users and the activities of cybercriminals hiding threats under add-ons.

Mimicking popular apps such as Google Translator or extensions with useful functionality like PDF Converter or Video Downloader, threats in browser extensions can insert advertisements, collect data about users' browsing histories and even search for login credentials.

"Even browser extensions that do not carry a malicious payload can be dangerous. For example, when the developers of these add-ons sell gathered user data to other companies, potentially exposing their data to someone who was not supposed to see it," said Anton Ivanov, senior security researcher.

 

The most prominent threat spread under the guise of browser extensions has been adware -- unwanted software designed to throw advertisements up on the screen.

Such advertisements are usually based on the browsing history to catch users' interest, embed banners in web pages or to redirect them to affiliate pages that the developers can earn money from, instead of legitimate search engine ads.

From January 2020 to June 2022, Kaspersky experts observed more than 4.3 million unique users faced adware hiding in browser extensions, which means approximately 70 per cent of all affected users have encountered this threat.

Adware can track everything the user searches for and then promote these products with affiliate ads on search engine

In 2020, Google removed 106 malicious browser extensions from its Chrome Web Store.

In total, these malicious extensions were downloaded 32 million times, putting the data of millions of users at risk.

"However, this does not happen often, the main way malicious add-ons are distributed is through third-party resources, said the report.

--IANS

na/

(Only the headline and picture of this report may have been reworked by the Business Standard staff; the rest of the content is auto-generated from a syndicated feed.)

Subscribe to Business Standard digital and get complimentary access to The New York Times

Quarterly Starter

₹900

3 Months

₹300/Month

SAVE 25%

Smart Essential

₹2,700

1 Year

₹225/Month

Save 46%

Super Saver

₹3,900

2 Years

₹162/Month

Subscribe

Renews automatically, cancel anytime

Here’s what’s included in our digital subscription plans

Access to Exclusive Premium Stories Online

  • Over 30 behind the paywall stories daily, handpicked by our editors for subscribers

Complimentary Access to The New York Times

  • News, Games, Cooking, Audio, Wirecutter & The Athletic

Business Standard Epaper

  • Digital replica of our daily newspaper — with options to read, save, and share

Curated Newsletters

  • Insights on markets, finance, politics, tech, and more delivered to your inbox

Market Analysis & Investment Insights

  • In-depth market analysis & insights with access to The Smart Investor

Archives

  • Repository of articles and publications dating back to 1997

Ad-free Reading

  • Uninterrupted reading experience with no advertisements

Seamless Access Across All Devices

  • Access Business Standard across devices — mobile, tablet, or PC, via web or app

More From This Section

Topics :Googlecyber security threatsGoogle Chrome

First Published: Aug 18 2022 | 3:44 PM IST

Next Story