Avast detects that millions of users are infected with malware from browser plugins

Threat researchers at Avast, a company known for digital security and privacy products, have detected a massive number of malware infections of people all over the world.

Researchers say: About 3 million people worldwide are infected with malware via extensions to third-party browsers for services, such as: Instagram, Facebook, Vimeo, and others.

Avast researchers say: The malware is hidden in at least 28 extensions from Google’s Chrome browser and Microsoft’s third-party Edge, which are linked to the most common platforms on the Internet.

Research has shown that malware is able to redirect user traffic to ads or phishing sites. Malware can also steal personal data, such as birthdays, email addresses, and active devices.

The extensions claim to help users download videos from sources, including: Video Downloader for Facebook, Vimeo Video Downloader, Instagram Story Downloader, VK Unblock, and other extensions for Chrome and Edge.

Users infected with these harmful plugins have also reported that the extensions are able to redirect them to other websites. When users click on the link, the extension sends information of what users clicked to the attacker’s control server. This server can send a command to redirect the victim from the real link to the hacked URL before redirecting them to the website they want to visit.

This allows hackers to log all clicks sent to intermediary third-party websites. Threat representatives can also collect data, including: login time, device name, operating system, browser, IP addresses as well as personal data.

Avast researchers believe that hackers who run malicious extensions want to monetize your traffic. And every time communications are redirected to a third-party domain, the criminals get paid.

Researchers warn that malware can disguise itself to avoid detection and removal. Avast says: At the time of writing this report, the extensions are still available for download, but Google and Microsoft have been contacted. A full list of harmful plugins can be found here.

Related Stories

Stay on op - Ge the daily news in your inbox

Recent Articles