时间:2025-11-22 03:31:50 来源:网络整理编辑:百科
Some 37,000 people downloaded a spam version of the "AdBlock Plus" extension from Google after a fra
Some 37,000 people downloaded a spam version of the "AdBlock Plus" extension from Google after a fraudulent ad blocking extension snuck through Google Chrome's verification process and appeared in the Chrome Web Store yesterday.
It's easy to see why Google (and some 37,000 people) were tricked — the developer who packaged the adware into an extension used the name of an already popular and legitimate extension, AdBlock Plus.
SEE ALSO:Whoops, a hacker found a way to steal your passwords from macOS High SierraAdditionally, the bogus page in the Chrome store came with reviews. In short, the fraudulent extension looked pretty realistic. Twitter user SwiftOnSecurity, who regularly tweets about web security, posted an image of the devious extension:
Google allows 37,000 Chrome users to be tricked with a fake extension by fraudulent developer who clones popular name and spams keywords. pic.twitter.com/ZtY5WpSgLt
— SwiftOnSecurity (@SwiftOnSecurity) October 9, 2017
Google eventually caught wind of the breach and removed the deceitful adware, but it remains unclear just how harmful the malware is for those who already downloaded the extension. At least one unfortunate user says they're being hit with ads. In a screenshot of a review, posted by SwiftOnSecurity, the user states that the "instant this was added to Chrome started getting invasive ads with high volume levels opening new tabs."
Though Google took down the adware, SwiftOnSecurity was unimpressed by Google's failure to stop this malware from sneaking through and ending up conspicuously displayed in the Chrome store in the first place:
Legitimate developers just have to sit back and watch as Google smears them with fake extensions that steal their good name pic.twitter.com/3Tnv4NtY9t
— SwiftOnSecurity (@SwiftOnSecurity) October 9, 2017
The 37,000 infected users probably hope this public shaming further motivates Google to buffer the Chrome store's verification process. After all, malicious developers will only get more inventive if the problem isn't fixed.
TopicsCybersecurity
You can now play 'Solitaire' and 'Tic2025-11-22 02:33
Wordle today: Here's the July 19 Wordle answer and hints2025-11-22 02:10
Tesla to drastically raise price of Full Self2025-11-22 01:54
Will there be an 'Eternals' sequel? Patton Oswalt seems to think so2025-11-22 01:54
The Weeknd teases new music in Instagram post2025-11-22 01:31
CNBC segment goes off the rails with barking dogs, man in underwear2025-11-22 01:07
This app brings the Dynamic Island to Android phones2025-11-22 01:03
'Speak No Evil' review: A frightening parable of the dangers of politeness2025-11-22 01:03
Early Apple2025-11-22 00:57
Everything you need to know about wax play during sex2025-11-22 00:47
One of the most controversial power struggles in media comes to a close2025-11-22 02:56
'Deadstream' review: A 'canceled' prankster crashes a haunted house for likes2025-11-22 02:48
Apple says it will unveil new products in upcoming months2025-11-22 02:45
Wordle today: Here's the answer, hints for June 82025-11-22 01:58
Old lady swatting at a cat ends up in Photoshop battle2025-11-22 01:55
South Korea issues arrest warrant for Do Kwon, founder of failed stablecoin Terra2025-11-22 01:33
Harry Styles responded to the Chris Pine spitting thing. His quote is truly something.2025-11-22 01:32
Android 13 update begins rolling out on Google Pixel phones2025-11-22 01:08
Nancy Pelosi warns colleagues after info hacked2025-11-22 01:03
Facebook Messenger is testing default end2025-11-22 00:47
