时间:2025-12-16 14:13:10 来源:网络整理编辑:百科
Some 37,000 people downloaded a spam version of the "AdBlock Plus" extension from Google after a fra
Some 37,000 people downloaded a spam version of the "AdBlock Plus" extension from Google after a fraudulent ad blocking extension snuck through Google Chrome's verification process and appeared in the Chrome Web Store yesterday.
It's easy to see why Google (and some 37,000 people) were tricked — the developer who packaged the adware into an extension used the name of an already popular and legitimate extension, AdBlock Plus.
SEE ALSO:Whoops, a hacker found a way to steal your passwords from macOS High SierraAdditionally, the bogus page in the Chrome store came with reviews. In short, the fraudulent extension looked pretty realistic. Twitter user SwiftOnSecurity, who regularly tweets about web security, posted an image of the devious extension:
Google allows 37,000 Chrome users to be tricked with a fake extension by fraudulent developer who clones popular name and spams keywords. pic.twitter.com/ZtY5WpSgLt
— SwiftOnSecurity (@SwiftOnSecurity) October 9, 2017
Google eventually caught wind of the breach and removed the deceitful adware, but it remains unclear just how harmful the malware is for those who already downloaded the extension. At least one unfortunate user says they're being hit with ads. In a screenshot of a review, posted by SwiftOnSecurity, the user states that the "instant this was added to Chrome started getting invasive ads with high volume levels opening new tabs."
Though Google took down the adware, SwiftOnSecurity was unimpressed by Google's failure to stop this malware from sneaking through and ending up conspicuously displayed in the Chrome store in the first place:
Legitimate developers just have to sit back and watch as Google smears them with fake extensions that steal their good name pic.twitter.com/3Tnv4NtY9t
— SwiftOnSecurity (@SwiftOnSecurity) October 9, 2017
The 37,000 infected users probably hope this public shaming further motivates Google to buffer the Chrome store's verification process. After all, malicious developers will only get more inventive if the problem isn't fixed.
TopicsCybersecurity
Major earthquake and multiple aftershocks rock central Italy2025-12-16 14:08
Imgur unveils new app features so you can finally chat with users2025-12-16 14:07
This street performer dancing to the BBC news jingle is simply glorious2025-12-16 13:31
NFL Dance Party: This Falcons linebacker absolutely failed his touchdown celebration attempt2025-12-16 13:08
Visualizing July's astounding global temperature records2025-12-16 13:08
19 tattoos that'll leave you nostalgic for your childhood2025-12-16 13:01
Get a call from the North Pole IRL thanks to this really cute chat bot2025-12-16 11:54
The polar vortex is here, but it's competing with global warming2025-12-16 11:38
What brands need to know about virtual reality2025-12-16 11:35
Everyone's favorite new emoji perfectly sums up 20162025-12-16 11:33
Over 82,000 evacuate as Blue Cut fire rapidly spreads in southern California2025-12-16 14:06
Amazon just teased the future of in2025-12-16 13:53
Magical scientists name spider after the Sorting Hat from Harry Potter2025-12-16 13:47
Truth is, Trump hated 'Time' until it put him on the cover2025-12-16 13:26
What brands need to know about virtual reality2025-12-16 13:07
'Luke Cage' second season on its way from Netflix2025-12-16 12:41
Everyone's favorite new emoji perfectly sums up 20162025-12-16 12:08
These are the hottest trends for 2017 according to Pinterest2025-12-16 11:49
Two states took big steps this week to get rid of the tampon tax2025-12-16 11:45
Justin Bieber, Ariana Grande and Fith Harmony light up Jingle Ball2025-12-16 11:29
