While the true scope of the impact remains uncertain, it is evident that these malicious extensions posed a significant threat to a substantial user base. The Swift Response of Google to Protect Users These anomalies raise questions about the potential manipulation of the installation figures.
Additionally, Avast noted a discrepancy between the number of people who encountered the malicious activity and the reported number of installs. This suspicion arises from the remarkably low number of reviews accompanying these extensions on the Chrome Web Store. However, Avast cautioned that while the number of installs is undeniably high, it is possible that these figures were artificially inflated. These extensions had collectively amassed a staggering 75 million installations. The cybersecurity giant’s investigation expanded to uncover additional similar extensions, ultimately reaching 32 identified threats. As users, it is crucial to remain vigilant and exercise caution when installing browser extensions, ensuring their legitimacy and adhering to best practices for online security.Īfter confirming the presence of malicious code, Avast promptly reported the compromised extensions to Google. Google’s swift action in removing the compromised extensions from the Chrome Web Store is a testament to its commitment to user safety. The incidents surrounding these malicious extensions emphasize the importance of implementing comprehensive security measures to safeguard users’ online experiences. These alarming statistics are a stark reminder of the widespread impact caused by these malicious extensions. Among the affected extensions was Autoskip for YouTube, catering to a staggering 9 million active users, Soundboost, with 6.9 million users and Crystal Ad Block, with 6.8 million users. Remarkably, these compromised extensions collectively accumulated a vast user base of 55 million. Credits: TechRadar Concerns about Installation Numbers and Potential Manipulationīuilding upon his initial discovery, Palant expanded his investigation to uncover 18 additional browser extensions that employed similar malicious code.