Google has removed more than 500 malicious extensions from the Chrome Web Store. This was followed by a Google search by security researcher Jamila Kaya. This investigation revealed that the malicious extensions were loading malicious ads while browsing. Specifically, users were targeted to specific sites through malicious ads imported from their extensions.
In most cases, the results page was malicious, such as a page Phishing or a malware download site. These extensions were part of a malware business that has been running for the past two years. The company malvertising was intended to steal privacy users unknowingly. It still looks like the team behind the malicious extensions of Google Chrome has been doing this kind of activity since 2010.
There were, of course, cases where the results page proved to be legitimate. Typical examples are n Dell, BestBuy and Macys.
Specifically, researchers discovered about 71 malicious extensions to Google Chrome, with about 2 million downloads. Subsequently, however, it turned out that at least another 430 extensions were also malicious.
Google has decided to take action by removing the extensions from its official web store. It has also disabled extensions in the user's browser. In addition, the company has described the extensions as "malicious" in Chrome to prevent users from reactivating them.