Google got duped by a fake ad blocker, and 37,000 people accidentally downloaded adware
Some 37,000 people downloaded a spam version of the "AdBlock Plus" extension from Google after a fraudulent ad blocking extension snuck through Google Chrome's verification process and appeared in the Chrome Web Store yesterday.
It's easy to see why Google (and some 37,000 people) were tricked — the developer who packaged the adware into an extension used the name of an already popular and legitimate extension, AdBlock Plus.
Prime Day deals you can shop right now
Products available for purchase here through affiliate links are selected by our merchandising team. If you buy something through links on our site, Mashable may earn an affiliate commission.iRobot Roomba Combo i3+ Self-Emptying Robot Vacuum and Mop—$329.99(List Price $599.99)
Samsung Galaxy Tab A9+ 10.9" 64GB Wi-Fi Tablet—$178.99(List Price $219.99)
Apple AirPods Pro 2nd Gen With MagSafe USB-C Charging Case—$189.99(List Price $249.00)
Eero 6 Dual-Band Mesh Wi-Fi 6 System (Router + 2 Extenders)—$149.99(List Price $199.99)
Apple Watch Series 9 (GPS, 41mm, Midnight, S/M, Sports Band)—$299.00(List Price $399.00)
Additionally, the bogus page in the Chrome store came with reviews. In short, the fraudulent extension looked pretty realistic. Twitter user SwiftOnSecurity, who regularly tweets about web security, posted an image of the devious extension:
Google allows 37,000 Chrome users to be tricked with a fake extension by fraudulent developer who clones popular name and spams keywords. pic.twitter.com/ZtY5WpSgLt
— SwiftOnSecurity (@SwiftOnSecurity) October 9, 2017
Google eventually caught wind of the breach and removed the deceitful adware, but it remains unclear just how harmful the malware is for those who already downloaded the extension. At least one unfortunate user says they're being hit with ads. In a screenshot of a review, posted by SwiftOnSecurity, the user states that the "instant this was added to Chrome started getting invasive ads with high volume levels opening new tabs."
Though Google took down the adware, SwiftOnSecurity was unimpressed by Google's failure to stop this malware from sneaking through and ending up conspicuously displayed in the Chrome store in the first place:
Legitimate developers just have to sit back and watch as Google smears them with fake extensions that steal their good name pic.twitter.com/3Tnv4NtY9t
— SwiftOnSecurity (@SwiftOnSecurity) October 9, 2017
The 37,000 infected users probably hope this public shaming further motivates Google to buffer the Chrome store's verification process. After all, malicious developers will only get more inventive if the problem isn't fixed.
Featured Video For You
This guy has 1,500 passwords, and a few tips for staying secure
TopicsCybersecurity
(责任编辑:关于我们)
- World’s first ‘meltdown
- Vietnam orders hotels near Marriott Hotel Hanoi to cancel reservations for summit security: report
- Trump just body shamed the first female presidential nominee in history
- 'Fast and the Furious' will be getting an animated Netflix series
- 17 Spectacular Outdoor Staircases
- “笋货”上市采购旺!清远西牛麻竹笋迎秋季尝鲜热
- 四川师范大学教授到汉源探寻七姓将军遗迹
- Human rights watchdog vows to root out abuse in sports, hate speech
- Best fitness tracker deal: Score a Fitbit at Amazon for up to 53% off
- Top 10 Most Significant Nvidia GPUs of All Time
- The third bundle of royal cuteness has finally arrived
- Slate’s weekly roundup: Jacob Brogan on his week at Slate.
- PSG's Neymar a Champions League doubt for Dortmund last 16 trip
-
【来源】学习强国 ...[详细]
-
“苏琳”叼起幼仔图片由中国保护大熊猫研究中心提供雅安日报讯3日下午,海归大熊猫“苏琳”在中国保护大熊猫研究中心雅安碧峰峡基地顺利产下一对双胞胎宝宝,这是今年在研究中心出生的首对双胞胎大熊猫宝宝。今年3 ...[详细]
-
7月31日,天全县小河乡沙坪新村聚居点3栋房屋进行了验收,该聚居点9栋房屋主体全部完工,是天全首个主体完工的聚居点,预计在8月20日房屋整体完工。据了解,该聚居点总建筑面积12569平方米,共修建9栋 ...[详细]
-
雅安日报讯八月份市纪委监察局将对全市贯彻落实八项规定精神、开展正风肃纪“9+1”专项整治情况进行大检查。昨(1)日,全市集中开展正风肃纪大检查电视电话会议召开,进一步深化党的群众路线教育实践活动正风肃 ...[详细]
-
This photo, carried on Wednesday, shows the North test-firing a 240mm multiple rocket launcher with ...[详细]
-
Men's team blasts US Soccer, backs women's equal pay fight
WASHINGTON DC:The US men's national team blasted the US Soccer Federation on Wednesday in support of ...[详细] -
Parents surprise FaceTime friends with their first meeting, and it's too much
The internet has connected us in ways we never thought possible, allowing people who would've never ...[详细] -
Pick from Amazon Fire and Samsung tablets.
Whether you need a tablet for school, work, or play, today's market has a model to fit every niche a ...[详细] -
Prime exclusive deal: $50 off Govee floor lamp
GET $50 OFF:As of July 19, the Govee floor lamp 2 is available at Amazon for $99.99, down from $149. ...[详细] -
California Valley Fire: Record
A disastrous mix of weather conditions, matchstick-dry timber, and a crushing drought led to explosi ...[详细]