The company said that it had removed over 100 malicious extensions after they were found collecting sensitive user data. CERT-In also said that it found these extensions contained code to bypass Google Chrome’s Web store security scans.
CERT-In found these extensions contained code to bypass Chrome Web Store's security scans. The malicious extensions had the ability to take screenshots, read the clipboard, and grab user keystrokes to read passwords.
CERT-In comes under the Ministry of Electronics and Technology and deals with cyber security threats.
The malicious extensions had the ability to take screenshots, read the clipboard, harvest authentication cookies or grab user keystrokes to read passwords and other confidential information, said the agency.
Last month, researchers had said that spyware effort attacked users through 32 million downloads of extensions to Google’s Chrome web browser. Google had said that it removed more than 70 of the malicious add-ons from its official Chrome Web Store after being alerted by the researchers.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
