The extensions of Google Chrome again show their vulnerabilities. The latest malicious program found is done with your banking information disguising as a Flash reader
Google Chrome is the most used browser in the world and hackers have made it one of its favorite victims. For years, all types of cybercriminals have used their extension store with the same idea as Google Play, upload malicious programs that people end up installing and strain their viruses. It happened at the end of 2018 with the extensions created to use your computer to mine cryptocurrencies, and they have not stopped yet. The latest case has come to light this Tuesday and is a small program that, posing as a Flash reader (its name is Flash Reader), steals all your credit cards without you noticing.
The discovery has been made by the Spanish cybersecurity company ElevenPaths, which has decided to tell all the details of this extension on its website. There, the researchers who have come up with this program explain that it is not just any application but that it follows a series of very striking novel methods.
"The extension is still available in the Google store and has been there since February 2018 with over 400 downloads to its credit, which gives an idea of how well thought out it is to not attract anyone's attention," Sergio comments. Santos, one of the researchers who have found the program, in conversation with Teknautas.
So worked is that it has surprised, and much, the researchers. Although it is uploaded in the Google store it is not possible to find it from the search engine and it is fed by redirections that arrive from pages that the same team that has developed this extension 'hacks' previously. "The attackers enter the servers of different pages and place a small Javascript code, which, when it detects that you enter the web from a Chrome browser automatically redirects you to the extension with the excuse that you need to install the Flash reader to see the Once you trust yourself to see what the official store is and install it, they slip in to steal all the data from your cards, "explains De los Santos.
The expertise of this group of 'hackers' is not only there, but also highlights the operation of the extension. "It is extremely simple, it has different patterns to identify when you are entering a card number and difference between Visa, Mastercard or American Express." Upon detecting it, take all the numbers you are typing and send them to the attackers so that they have the keys to steal, "says the expert. "It is a stealth program in all phases and that is the most novel and striking."
Date update on 2019-01-16. Date published on 2019-01-16. Category: windows Author: Oscar olg Fuente: elconfidencial