9
3 Comments

Finding malicious Chrome extensions

A short while back, I launched https://chrome-stats.com/ to analyze Chrome extensions in Chrome Web Store. Using these data, I am now able to identify some potentially malicious Chrome extensions. I have incorporated some of the logics used in this blog post with Brian Krebs (https://krebsonsecurity.com/2021/05/using-fake-reviews-to-find-dangerous-extensions/) to provide a "Safety" metrics for each Chrome extension. I am hoping that this will help users identify risky extensions sooner since Google typically takes a while before they removed a bad extension.

Do you know/remember any malicious Chrome extension recently? I am looking for data points to see measure how well my algorithm is in detecting bad Chrome extensions.

  1. 1

    I have a chrome extension in the store (that I didn't update it since several months)

    But I received from time to time emails from people that want to buy the extension. I guess it's probably to buy the extension and add a malicious code inside.

    However, Google did a good job by checking deeper the extension that inject/use external script and permissions.

    1. 1

      Yea, I also had several Chrome extensions that people reach out to me about monetization, which was kind of what led me down this project in the first place. I have gotten requests about replacing search engine, mining user data, using user bandwidth as a proxy, etc. I see some of those extensions that integrate with these companies are still around.

      Currently my algorithm is still not able to detect them all, but they have some common patterns so I reasonably confident that I can detect them once I enhance the logics some more.

  2. 1

    A recent popular malware-suspected chrome extension was the Great Tab Suspender. Came as quite a shock since it was such a hit among anyone used to opening many tabs at once (like me 😅).

Trending on Indie Hackers
I write Lenny's Newsletter, the #1 paid business newsletter on Substack, generating over $500k ARR. AMA. 42 comments Launched two years ago - didn't go viral - what now? 21 comments I built advanced Stripe Payment Links 8 comments Tell me About Your Startup! + would love to learn how you use issue trackers + documentation software. 5 comments 👾 Centralised and Decentralised exchanges… what's the difference? 3 comments Considering Cold Mailing? Here's My Personal Experience! 📧 1 comment