A newly discovered spyware effort attacked users through 32 million downloads of extensions to Google’s market-leading Chrome Web browser, researchers at Awake Security said, highlighting the tech industry’s failure to protect browsers as they are used more for e-mail, payroll and other sensitive functions.
Google said it removed more than 70 of the malicious add-ons from its official Chrome Web Store after being alerted by the researchers last month.
The extensions were designed to avoid detection by antivirus companies or security software that evaluates the reputations of Web domains, Golomb said.
You can say exactly the opposite, we cooperate with law enforcement and security bodies to prevent as much as we can
“Galcomm is not involved, and not in complicity with any malicious activity whatsoever,” Fogel wrote.
Conduit
Malicious developers have been using Google’s Chrome Store as a conduit for a long time.