Plus, more newsbytes of the week including an iOS flaw and Twitter billing leak
Security researchers have discovered what they believe to be a global surveillance campaign whereby attackers were using malicious Google Chrome browser extensions to steal data and spy on over 100 networks. Threatpost reported that the researchers suspect millions of Chrome users were targeted across the industries of financial services, oil and gas, media and entertainment, healthcare and pharmaceuticals, and government organizations. The malicious extensions could surreptitiously take screenshots, log keystrokes, read the clipboard, and more. They were free and marketed as browser helpers that convert files or alert users when they land on a suspicious website. After reading the report, Google removed 106 browser extensions from the Chrome Web Store.
The researchers also maintain that Israel-based domain registrar CommuniGal Communication Ltd. (GalComm) assisted in the covert operations, as they found over a hundred malicious extensions using GalComm domains as loader pages or command and control bases. GalComm owner Moshe Fogel told Reuters that the company has not engaged in any wrongdoing or malicious activity whatsoever.
“It’s only normal for cybercriminals to target Chrome, as it’s the leader in browsers with 68% market share,” commented Avast Security Evangelist Luis Corrons. “Regarding extensions, it’s best if we limit ourselves to those developed by known companies. There are other solutions out there as well, such as Avast Secure Browser.”
iOS clipboard flaw p ..
Support the originator by clicking the read the rest link below.
