The Computer Security Incident Response Team (CSIRT), a unit of Nigeria Communications (NCC) recently identified five malicious extensions of Google Chrome that track online browser activities and steal user data.
According to the unit, the five malicious extensions that the McAfee Mobile Research Team previously discovered are the Netflix Party with 800.000 downloads, the Netflix Party 2 with 300.000 downloads and the Screenshot Screenshot Screenshot with 200.000 downloads, FlipShope Price Tracker Extension with 80.000 downloads and AutoBuy Flash Sales with 20.000 downloads.
The cybersecurity protection team focused on the telecommunications sector said that the five identified Google Chrome extensions have a high probability and potential for harm, and have been downloaded more than 1,4 million times and serve as a gateway to steal user data. He also warned telecom consumers to be cautious when installing any browser extensions.
"Users of these Chrome extensions are unaware of their intrusive functionality and privacy risk. Malicious extensions monitor victims' visits to e-commerce sites and modify the visitor's cookie to appear as if they came via a referring link. Consequently, extension developers receive an affiliate fee for any e-store purchases.“, can be read in the official communiqué of the investigation.
The advisory also stated that although the Google team has removed several browser extensions from its Chrome Web Store, keeping malicious extensions out can be difficult.
BUT: Backdoor computer malware in Africa increased in Q2 2022
The NCC-CSIRT therefore recommended that consumers exercise great caution when installing any browser extensions.
"These include manually removing all listed extensions from your chrome browser. Internet users should be aware of requests from their browser extensions, such as permission to run on any website visited and data requested before installing it. Although some extensions are apparently legitimate, due to the high number of user downloads, these dangerous addons make it imperative for users to determine the authenticity of the extensions they access.“, underlines the investigation.
The CSIRT is the telecom industry cybersecurity focus center created by the NCC to focus on incidents in the telecom industry and potentially affecting telecom consumers and general citizens.
