Chrome has identified dozens of extensions that steal users' data and activate unwanted paid subscriptions: here are what they are
Google Chrome and Mozilla Firefox engineers have removed hundreds of very dangerous extensions from the online stores of the two browsers: they were accused of stealing data from users and running remote code compromising users' PCs. This is not the first time that add-ons have been found that are dangerous to people's data security, but this time the two web giants decided to work simultaneously to protect users.
Extensions are definitely one of the most useful tools on the Web: they allow you to add special features to your browser and perform actions much faster that could take up a lot of your precious time. There are extensions for everything from weather forecasts and simultaneous translators to add-ons designed for the business world. As is often the case with smartphone applications, browser extensions can also hide nasty surprises: viruses and malware capable of stealing our personal data. Here are the dangerous extensions removed from Chrome and Mozilla.
Chrome, blocked extensions that steal money
Chrome has taken action against applications that offer a subscription service or features that are activated only if purchased. Technicians had to intervene immediately after an increase in the last few months of reports from users who have been ripped off by these types of extensions. Google has assured that the block to paid extensions is only temporary, waiting for a solution that will safeguard users' wallets. However, it hasn't defined a roadmap and it's not known when the affected extensions will be able to return to the store.
The impact, however, should be minimal: according to available data less than 10% of extensions feature subscription service or in-app purchase of features.
Firefox, 197 extensions blocked: what are they
Firefox's intervention was more massive: the browser's technicians blocked 197 extensions that were executing remote code and stealing users' data. Most of the blocked add-ons are made by 2Ring (as many as 129) and are dedicated to the working world. These extensions are accused of executing remote code. Another six add-ons are developed by a Brazilian company that offers online courses for small business owners. Among the deleted extensions there are also some dedicated to some online games and are accused of stealing users' personal data.
Firefox has already removed the extensions from the online store and disabled their operation from all PCs.