Extensions affect search results
Google has removed dozens of malicious extensions from the Chrome Web Store that could modify search results, send spam, or insert unwanted ads. Together, these extensions have been downloaded and installed 75 million times.
The malware was first discovered by cybersecurity researcher Vladimir Palant. During the analysis of the PDF Toolbox extension, the expert found that it contains hidden code that allows you to inject arbitrary JavaScript code into any website that the user visits. The code is activated 24 hours after the extension is installed, which is a typical behavior of such malware.
They should be removed from the browser
Then Palant discovered 17 more similar malicious extensions. Avast researchers added to the list, and as a result, 32 malicious extensions were found. Among the most popular ones are Autoskip for YouTube with 9 million active users, Soundboost with 6.9 million and Crystal Ad block with 6.8 million.
Google has already stated that these extensions have already been removed from the Chrome Web Store. However, users will remain at risk until they are manually removed from their PCs.
