Being infected with malicious code...

According to Avast—a security firm, over three million people were found to have installed 15 Chrome and 13 Edge extensions that were malicious. These extensions contain codes that result in redirection of user traffic towards ads and phishing sites, collect personal information and browsing history, as well as, download even more malware into users’ devices.

Certain extensions have allegedly existed since the end of 2018 and the extensions have been mainly used for redirection of user traffic, which allows the cybercriminals to receive payment for the hijacking of user traffic.


The 15 Chrome malicious extensions are
  • Direct Message for Instagram
  • DM for Instagram
  • Invisible mode for Instagram Direct Message
  • Downloader for Instagram
  • App Phone for Instagram
  • Stories for Instagram
  • Universal Video Downloader
  • Video Downloader for Facebook
  • Vimeo Video Downloader
  • Zoomer for Instagram and FaceBook
  • VK UnBlock
  • Odnoklassniki UnBlock
  • Upload photo to Instagram
  • Spotify Music Downloader
  • The New York Times News

    • The 13 Edge malicious extensions are
  • Direct Message for Instagram
  • Instagram Download Video & Image
  • App Phone for Instagram
  • Universal Video Downloader
  • Video Downloader for FaceBook
  • Vimeo™ Video Downloader
  • Volume Controller
  • Stories for Instagram
  • Upload photo to Instagram
  • Pretty Kitty, The Cat Pet
  • Video Downloader for Youtube
  • SoundCloud Music Downloader
  • Instagram App with Direct Message DM

    • It is advised to delete these extensions if you have downloaded any of the mentioned extensions. Browser extensions with malicious codes tend to steal personal data, for example, passwords, email addresses, or even payment card details.

    Cybercrime groups have been developing malicious extensions for Chrome and Firefox browsers that mirror the authentic extensions. Currently, they have directed the development towards Microsoft Edge browser.

    In December 2020, Microsoft removed 18 Edge browser extensions that were found to be malicious or disguised as official extensions. Cybercriminals were making profits by loading ads on websites that users visited and slowing down web browsing for them.


    Edge extensions that disguised as official extensions
  • NordVPN
  • Adguard VPN
  • TunnelBear VPN
  • Ublock Adblock Plus
  • Greasemonkey
  • Wayback Machine
  • edge-extension-results.png

    • Edge extensions that were malicious
  • The Great Suspender
  • Floating Prayer - Picture-in-Picture Mode
  • Go Back With Backspace
  • friGate CDN - smooth access to websites
  • Full Page Screenshot
  • One Click URL Shortener
  • Guru Cleaner - cache and history cleaner
  • Grammar and Spelling Checker
  • Enable Right Click
  • FNAF
  • Night Shift Redux
  • Old Layout for Facebook

    • To prevent any or further malicious attacks, remove the above mentioned extensions that you have downloaded before November 2020.

    For any enquiries or feedback, do write in to us at care@compaqs.com or contact us at (+65) 6262 0402.

    Sources
    Bullguard, Browser extensions infected with malicious code – have you installed any of these?
    Tech Times, Study Finds Over 3 Million Users Installed 15 Chrome and 13 Edge Malicious Extensions: Here's a Complete List