Tech giants Microsoft and Google are now investigating a malware that disguises as browser extensions for popular apps like Facebook, Instagram, Vimeo, Soundcloud, Spotify, and even New York Times.
According to the cybersecurity provider Avast as reported by Business Insider, at least 28 malicious extensions were found on both Google Chrome and Microsoft Edge. The security firm warns internet users that the extensions they are installing on their web browsers could be malware disguising as apps and services.
Although the hacker's primary goal is getting more ad revenue, stealing IP addresses and knowing the login time may provide information about the user's approximate location and daily routine. This may pose more risks in the future.
While Avast only discovered these extensions in November, there are evidences that some of them are already being used since December 2018. Google and Microsoft are now looking into Avast's findings but, for now, these extensions remain available on the Chrome Web Store and the Microsoft Edge Add-ons portal.
Avast malware researcher Jan Rubín noted that it is still unclear where these extensions have originated, but they believe they are either were deliberately created with the malware or the author may have waited for these extensions to become popular before pushing the update that contained the malware.
Rubin also added the original author may have sold the extensions to another person who may have added the malware afterwards.
Related article: Goontact Spyware Targets Android and iOS Users in Japan, Korea, and Chinese-Speaking Countries
This is owned by Tech Times
Written by CJ Robles