时间:2024-09-20 10:58:46 来源:网络整理编辑:知識
Some 37,000 people downloaded a spam version of the "AdBlock Plus" extension from Google after a fra
Some 37,000 people downloaded a spam version of the "AdBlock Plus" extension from Google after a fraudulent ad blocking extension snuck through Google Chrome's verification process and appeared in the Chrome Web Store yesterday.
It's easy to see why Google (and some 37,000 people) were tricked — the developer who packaged the adware into an extension used the name of an already popular and legitimate extension, AdBlock Plus.
SEE ALSO:Whoops, a hacker found a way to steal your passwords from macOS High SierraAdditionally, the bogus page in the Chrome store came with reviews. In short, the fraudulent extension looked pretty realistic. Twitter user SwiftOnSecurity, who regularly tweets about web security, posted an image of the devious extension:
Google allows 37,000 Chrome users to be tricked with a fake extension by fraudulent developer who clones popular name and spams keywords. pic.twitter.com/ZtY5WpSgLt
— SwiftOnSecurity (@SwiftOnSecurity) October 9, 2017
Google eventually caught wind of the breach and removed the deceitful adware, but it remains unclear just how harmful the malware is for those who already downloaded the extension. At least one unfortunate user says they're being hit with ads. In a screenshot of a review, posted by SwiftOnSecurity, the user states that the "instant this was added to Chrome started getting invasive ads with high volume levels opening new tabs."
Though Google took down the adware, SwiftOnSecurity was unimpressed by Google's failure to stop this malware from sneaking through and ending up conspicuously displayed in the Chrome store in the first place:
Legitimate developers just have to sit back and watch as Google smears them with fake extensions that steal their good name pic.twitter.com/3Tnv4NtY9t
— SwiftOnSecurity (@SwiftOnSecurity) October 9, 2017
The 37,000 infected users probably hope this public shaming further motivates Google to buffer the Chrome store's verification process. After all, malicious developers will only get more inventive if the problem isn't fixed.
TopicsCybersecurity
Olympics official on Rio's green diving pool: 'Chemistry is not an exact science'2024-09-20 10:33
林良銘賽後連聲感謝主教練:他帶來了質的改變2024-09-20 10:27
孫興慜女粉絲650萬韓元拍下簽名球衣 :每天搜索他10次2024-09-20 10:25
拜仁將3500+500萬歐再次報價馬內 各方盼盡快完成2024-09-20 10:01
WhatsApp announces plans to share user data with Facebook2024-09-20 09:36
謝峰:防反擊出現問題 5月份缺乏高質量熱身影響磨合2024-09-20 09:36
黃健翔 :日本戰巴西不落下風傳控自如 踢得太好了2024-09-20 09:17
動人一幕 !C羅對陣瑞士破門後 看台上的母親哭成淚人2024-09-20 09:12
This chart shows just how high Simone Biles can jump2024-09-20 09:00
薩拉赫獲承諾明夏可免簽巴薩 今夏不會離開利物浦2024-09-20 08:18
Xiaomi accused of copying again, this time by Jawbone2024-09-20 10:39
津媒 :上海海港遭遇當頭一棒 輸球又輸人2024-09-20 09:54
國安VS滄州首發 :阿德本羅搭張玉寧 薑祥佑張呈棟出戰2024-09-20 09:54
曝拉波爾塔和高層討論再次降薪 巴薩球員並不知情2024-09-20 09:28
Two astronauts just installed a new parking spot on the International Space Station2024-09-20 09:07
王霜回應當選湖北足協副會長 :繼續努力好好踢球2024-09-20 08:51
伊卡爾迪自宣留巴黎 :進了200球 人們終於知道我是誰2024-09-20 08:49
鬥法?葡主帥:C羅世界最佳 阿主帥:梅西屬於全世界2024-09-20 08:35
Nate Parker is finally thinking about the woman who accused him of rape2024-09-20 08:26
林良銘蠍子擺尾破門 謝暉在場邊振臂高呼(gif)2024-09-20 08:16