More than 500+ malicious Chrome extensions forming a malicious network of extensions have been removed from Chrome’s Web Store. They were found to be:
- Requesting a high permissions level (always a red flag), which in turn allows them to access a lot of browser data
- Injecting malicious ads, a/k/a malvertising, in millions of installations
- Collecting user browsing data
- Directing users to potentially malicious sites
Google has deactivated the extensions and marked them as “malicious” in every user’s browser, so that users know to remove the extensions.
To check/uninstall Google Chrome extensions:
- Open Chrome, and go to “More” (which appears as 3 vertical dots at the top right of your screen)
- Go to “More Tools”, “Extensions”
- All of your browser extensions display in this view. On any disabled extension that has been marked as “Malicious”, click “Remove”