Explore the latest news and trends  

Sign up for our weekly security newsletter

Be the first to receive important updates on security


Malevolent Chrome Extensions Contaminated more than 100K Pcs

Cyber-crooks contaminated over 100,000 PCs with the aid of browser extensions which clandestinely mined crypto-currencies, seized login credentials as well as executed click fraud. It was Chrome the authorized Web store of Google where the malevolent add-ons were harbored.

It was March, if not earlier, from when the scam started working. During that period 7 malevolent extensions were created, said researchers from Radware a security company. Security researchers from Google eliminated 5 of the add-ons after which it eliminated 2 more following Radware's reporting to the Internet giant. Overall, the malevolent extensions contaminated 100,000 plus end-users, with one of them at least belonging to one well-safeguarded network that a global manufacturing company (name undisclosed) maintained.

When the 0-day malicious software was first detected at the manufacturing company, a client of Radware, the researchers called it after the app name Nigelify the chief app of Google's Chrome the security firm leverages. Nigelify replaces images with Nigel Thornberry's face a cartoon character, while according to Radware, the act was behind an enormous volume of the detected contaminations.

One Google spokesperson said that the company eliminated the malevolent extensions that resided inside Chrome Web Store as also inside the browsers belonging to a limited number of impacted end-users in just a few hours of getting notified.

Radware got to know about the extensions via machine-learning algorithms which examined the safeguarded network's communication logs following the network's infection. Radware's researchers expressed their belief that the criminals responsible for the extensions hadn't ever been spotted earlier. Considering that it had become a routine success of hosting malevolent add-ons inside Chrome Web Store, the criminals' repeat attack wouldn't be astonishing. Arstechnica.com posted this dated May 11, 2018.

The above assault follows a warning to Chrome fans of one malevolent extension getting proliferated across Facebook. Trend Micro another security company is cautioning users of Google Chrome of the FacexWorm malicious program, which's installed onto certain Chrome add-on, which fools end-users in a way that they download it.

FacexWorm, created for Facebook Messenger, loads onto victims' computers followed with filching their passwords and other credentials such as of Instagram and Facebook.

ยป SPAMfighter News - 5/24/2018

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page