Millions of Chrome extensions reveal browsing history [DE]
Summary
A security researcher discovered 287 Chrome extensions that exfiltrate browser history, potentially enabling corporate espionage and credential harvesting. The affected extensions include VPNs, productivity tools, and shopping add-ons, many with hundreds of thousands or millions of users. Some extensions requested broad host permissions allowing them to monitor navigation events and page activities across domains.
IFF Assessment
The disclosure of widespread browser history exfiltration by Chrome extensions poses a risk to user privacy and security.
Severity
Defender Context
Defenders should monitor employee browser extensions for suspicious activity and implement policies restricting the installation of untrusted extensions. Regularly audit installed extensions and educate users about the risks associated with granting excessive permissions. This highlights the ongoing challenge of supply chain security and the need for robust vetting processes for browser extensions.