Malicious Chrome extension is next to impossible to manually remove

Channel:
Tech House
Subscribers:
957
Published on ● Video Link: https://www.youtube.com/watch?v=cH5Z2RovYLk


Category:
Tutorial
Duration: 7:22
132 views
2

Malicious Chrome extension is next to impossible to manually remove.
Proving once again that Google Chrome extensions are the Achilles heel of what's arguably the Internet's most secure browser, a researcher has documented a malicious add-on that tricks users into installing it and then is nearly impossible for most to manually uninstall. It was available for download on Google servers until Wednesday, 19 days after it was privately reported to Google security officials, a researcher said.

Once installed, an app called "Tiempo en colombia en vivo" prevents users from accessing the list of installed Chrome extensions by redirecting requests to chrome://apps/?r=extensions instead of chrome://extensions/, the page that lists all installed extensions and provides an interface for temporarily disabling or uninstalling them. Malwarebytes researcher Pieter Arntz said he experimented with a variety of hacks—including disabling JavaScript in the browser, starting Chrome with all extensions disabled, and renaming the folder where extensions are stored—none of them worked. Removing the extension proved so difficult that he ultimately advised users to run the free version of Malwarebytes and let it automatically remove the add-on.

When Arntz installed the extension on a test machine, Chrome spontaneously clicked on dozens of YouTube videos, an indication that inflating the number of views was among the things it did. The researcher hasn't ruled out the possibility that the add-on did more malicious things because the amount of obfuscated JavaScript it contained made a comprehensive analysis too time consuming. The researcher provided additional details in a blog post published Thursday.

Tiempo en colombia en vivo racked up almost 11,000 installs before Google removed it, but it may have found its way onto still more computers. That's because a variety of abusive websites are using a technique that tricks inexperienced users into installing the extension. As Malwarebytes explained in late 2016, the forced install trick uses JavaScript to provide a dialog box that says visitors must install the extension before they can leave the page. Clicking cancel or closing the tab produces an unending series of variations on that message. Arntz said he privately reported the extension to Google on December 29 and that it remained available on the Chrome Store until Wednesday.



Other Videos By Tech House


2018-01-19Twitter to notify users who got played by Russian propaganda accounts
2018-01-19Apple CEO Tim Cook I Don't Believe in Overuse of Technology
2018-01-19Weekend Open Forum Have recent CPU s ecurity concerns made you reconsider your next build
2018-01-19Twitter says over 600k people interacted with Russian propaganda accounts
2018-01-19MoviePa ss is investing in films in hopes of boosting revenues
2018-01-19Canada's Hydro Quebec unable to meet demand from digital currency miners
2018-01-19Learn how to make 3D models by taking this online course that's on sale today
2018-01-19Meet the lifeguarding drone that r escued two swimmers in Australia
2018-01-19OnePlus got pwned, exposed up to 40,000 users to credit card fraud
2018-01-19Amazon Prime's monthly subscr iption receives $2 price hike
2018-01-19Malicious Chrome extension is next to impossible to manually remove
2018-01-198 paid iPhone apps on sale for free right now
2018-01-19Amazon Prime just raised its monthly price — here's how to cancel your subscr iption
2018-01-19New LG patent shows off a foldable phonetablet hybrid device
2018-01-19Amazon Jacks Monthly Prime Prices by 20 Percent
2018-01-19Amazon's Jeff Bezos continued to drive a Honda long after becoming a billionaire — and it
2018-01-19The net neutrality testing app that Apple rejected is available now
2018-01-1917 Cheap Bluetooth Speakers Under $50, Ranked from Best to Worst
2018-01-19Age of Empires Definitive Edition set for February 20th launch
2018-01-19Alpha Beat Cancer aims to teach young kids about cancer
2018-01-19Goo gle Arts and Culture’s viral selfie feature now in India


Tags:
Malicious
Chrome
extension
is
next
to
impossible
manually
remove
Malicious Chrome extension is next to impossible to manually remove