The Computer Emergency Response Team of India (CERT-In) has been scanning the internet for potential cyber-attacks to guard the Indian cyberspace. It said that it has found that these extensions contained a code to bypass Chrome store’s default security scanning mechanism.
CERT-In further gadded that the malicious links had the ability to take screenshots, read clipboards and harvest cookies or grab user keystrokes. In an official advisory, the government agency said, “It has been reported that Google has removed 106 extensions of the Google Chrome browser from the chrome web store which were found collecting sensitive user data. These extensions reportedly posed as tools to improve web searches, convert files between different formats as security scanners and more.”
The agency has advised the Chrome users to uninstall the Chrome extensions. Users can easily uninstall the extensions by visiting the Chrome extension or Chrome Web Store page. YOU have to enable the developer mode to see the list of extensions that are enabled on your browser.
You should uninstall the extension that looks malicious or have not been used by you in a long time. Another security research firm, Awake Security found out last week that Google Chrome spyware extension was downloaded more than 32 million times. The security research firm said that it is the tech industry’s failure to protect browsers.