Despite the fact that bad actor Chrome extensions continue to appear in the Web Store, Google has done a lot to mitigate the problem over the last year. The Web Store is no longer the wild west it once was, with new requirements for how developers must use your data and a seal of approval for anyone who respects that data and does not misuse or sell it.
McAfee Labs discovered today that five malicious cookie stuffing extensions that have been installed over 1.4 million times pose a risk to you and anyone else who still has them on their system.
The extension “Netflix Party” – not to be confused with the real Netflix Party – as well as Netflix Party 2, FlipShope – Price Tracker Extension, Full Page Screenshot Capture – Screenshotting, and AutoBuy Flash Sales are all guilty of logging and stealing several personal details from any victim who has installed them.
Your country, city, zip code, precise location (really, the location of your device, but your device is commonly on your person or in your home), and more have been forwarded to the attackers as a.JSON file, allowing these details to be read as plain text!
The culprits are listed below, along with their extension IDs. Each one has between 80,000 and 200,000 instals, which is mind-boggling in and of itself. It makes no difference how much Google does to address the issue of malicious extensions; if a user does not check the reviews, privacy practises, and developer name of something before installing it, they will still become victims of such attacks.
Netflix Party – ID: mmnbenehknklpbendgmgngeaignppnbe
flijfnhifgdcbhglkneplegafminjnhn flijfnhifgdcbhglkneplegafminjnhn flijfnh
Price Tracker Extension for FlipShope – Extension ID: adikhbfjdbjkhelbdnffogkobkekkkej
Screenshotting – Full Page Screenshot Capture – Extension ID: pojgkmkfincpdkdgjepkmdekcahmckjp
Extension ID: gbnahglfafmhaehbdmjedfhdmimjcbed AutoBuy Flash Sales
At the moment, unsuspecting users can still install the “Full Page Screenshot” and “FlipShope” extensions, but Google has removed the Netflix Party extensions from the Web Storey. If you have any of these installed on your Chromebook or Chrome Browser, please uninstall them right away!