Avast noted that the malware is quite tricky and does not execute itself if the victim is a web developer as it will be easy for them to identify its malicious activities.
Just last week it was reported that an infostealer malware is targeting popular browsers like Firefox, Chrome, Yandex, Edge browser. Now, the IT security researchers at Avast have identified several malware-infected third-party browser extensions running on Google Chrome, and Microsoft Edge browsers – These extensions are being used by around 3 million users around the world.
These extensions are developed to steal the personal data of users and redirect them to websites that are either compromised, running phishing scams, or bombarding visitors with unwanted ads.
According to Avast, most of these extensions hide behind services like video downloading for social media platforms mainly Facebook, Instagram, Vimeo, and VK, etc.
See: Chrome extensions with 80 million+ users found engaging in ad fraud
Upon installation, malicious code in the Javascript-based extensions lets attackers drop additional malware on the targeted device, says the report shared by Avast with Hackread.com.
Users have also reported that these extensions are manipulating their internet experience and redirecting them to other websites. Anytime a user clicks on a link, the extensions send information about the click to the attacker’s control server, which can optionally send a command to redirect the victim from the real link target to a new hijacked URL before later redirecting them to the actual website they wanted to visit, Avast wrote in a malware infected browser extensions stealing chrome
