This PDF Chrome extension might contain malware
The post has been updated. The original date of publication was June 1, 2023.
A security researcher independent of the company discovered malicious code within 18 Chrome extensions available today in the Chrome Web Store. More than 57 million active users use the extensions. This is yet another reason to believe that Chrome extensions should be assessed with an objective eye.
Chrome extensions are applications that are built on the top the foundation of Google Chrome that allow you to add additional functions to your internet browser. The tasks this customizable feature can accomplish are numerous; however, some of the most popular extensions can automate filling in the password of your choice, block ads, provide single-click access to your list of tasks and alter how a social media site appears. Unfortunately, since Chrome extensions are mighty and have much control over your experience, They are often a victim of hackers and other criminals.
This feature leaves the PDF Toolbox open to bad intentions. Google demands extension developers only to have the minimum permissions required. To save PDFs to tabs that aren’t open, the PDF Toolbox must be able to connect to every website that you are currently browsing. This capability will allow it to access your browser differently and legitimately.
Along with locating other targeted extensions, Palant has been able to verify what the malware had been doing (or at least did previously). The wings turn people’s Google queries to other search engines, possibly in exchange for a tiny fee for affiliates. They could bring in substantial profits through the spread of millions of users and generate a profit for the developers.
If you’ve got one of the affected extensions on your PC, you should remove it immediately. It’s an excellent idea to quickly review the other extensions you’ve installed to confirm you’re still using them and that they appear authentic. If you do not, then you must take them off too.
If not, consider this an opportunity to be aware of any potential malware. For more information on combatting it, please read our guide to removing malware from your PC.
It was updated on June 2, 2023. A Google spokesperson explained: “The Chrome Web Store has policies to ensure that users secure, and that developers must follow. We are committed to taking privacy and security assertions against extensions seriously and if we discover extensions that do not comply with our guidelines We take the appropriate steps. The extensions that were reported were taken off the Chrome Web Store.”