Cybersecurity: NCC-CSIRT alerts consumers to Google Chrome extensions malware

*The Nigerian Communications Commission’s Computer Security Incident Response Team lists details of the five Google Chrome malicious extensions, urges telecoms consumers to be cautious when installing any browser extension

Gbenga Kayode | ConsumerConnect

The Nigerian Communications Commission’s Computer Security Incident Response Team (NCC-CSIRT) has identified five malicious Google Chrome Extensions that surreptitiously track online browser’s activities and steal their data.

ConsumerConnect reports Mr. Reuben Muoka, Director, Public Affairs at NCC, in a statement issued Friday, September 9, 2022, noted the NCC-CSIRT said the five malicious extensions, which the McAfee Mobile Research Team earlier discovered, are Netflix Party with 800,000 downloads, Netflix Party 2 with 300,000 downloads, Full Page Screenshot Capture Screenshotting with 200,000 downloads, FlipShope Price Tracker Extension with 80,000 downloads, and AutoBuy Flash Sales with 20,000 downloads.

The NCC-CSIRT also stated that the five Google Chrome Extensions identified have a high probability and damage potential, and have been downloaded more than 1.4 million times and serve as access to steal users’ data.

The telecoms sector-focused cybersecurity protection team alerted consumers to be cautious when installing any browser extension.

The advisory further said: “The users of these chrome extensions are unaware of their invasive functionality and privacy risk.

“Malicious extensions monitor victims’ visits to e-commerce Web sites and modify the visitor’s cookie to appear as if they came through a referrer link.

“Consequently, the extensions’ developers get an affiliate fee for any purchases at electronic shops.”

Besides, the NCC-CSIRT advisory disclosed  although the Google team removed several browser extensions from its Chrome Web Store, keeping malicious extensions out may be difficult.

What consumers should do for protection

It, therefore, recommended that telecoms consumers observe caution when installing any browser extension.

The NCC-CSIRT also said: “These include removing all listed extensions from their chrome browser manually.

“Internet users are to pay close attention to the promptings from their browser extensions, such as the permission to run on any website visited and the data requested before installing it.

“Although, some extensions are seemingly legit, due to the high number of user downloads, these hazardous add-ons make it imperative for users to ascertain the authenticity of extensions they access.”

The telecoms sector regulatory Commission describes Google Chrome extensions as “software programmes that can be installed into Chrome in order to change the browser’s functionality.

“This includes adding new features to Chrome or modifying the existing behaviour of the programme itself to make it more convenient for the user.”

The NCC-CSIRT stated they serve purposes, such as block ads, integration with password managers and sourcing coupons as items sent to a shopping cart.

The Computer Security Incident Response Team (CSIRT) is the telecoms sector’s cybersecurity incidence centre, set up by the NCC to focus on incidents in the telecoms industry, and as they may affect both telecoms consumers and the citizens at large.

Kindly Share This Story