Loading...

Facebook profiles can be hijacked by Chrome extensions malware

Facebook+profiles+can+be+hijacked+by+Chrome+extensions+malware


Cybercriminals are uploading malicious Chrome browser extensions to the official Chrome Web Store and use them to hijack Facebook accounts, according to security researchers from Kaspersky Lab. The rogue extensions are advertised on Facebook by scammers and claim to allow changing the color of profile pages, tracking profile visitors or even removing social media viruses.
The attacks manifest as suggestions to download Facebook apps. Those apps are, alas, not real. Instead they are malware and, in one case, a malware-laden Chrome extension hosted in Google's very own Chrome Web Store. To do that, they must follow a series of steps, which include installing a fake Adobe Flash Player Chrome extension. The launchpad for the fake Flash Player is a Facebook app called “Aprenda”. If Aprenda is installed it redirects users to Chrome Web Store, encouraging them to install the fake Flash extension.

This last one caught our attention not because it asks the user to install a malicious extension, but because the malicious extension is hosted at the official Google's Chrome Web Store. If the user clicks on ‘install application’ he will be redirected to the official store. The malicious extension presents itself as “Adobe Flash Player”, wrote Fabio Assolini. "Be careful when using Facebook. And think twice before installing a Google Chrome extension," he adds.

Uploading multiple rogue extensions on the Chrome Web Store and running several Facebook spam campaigns to advertise them allows attackers to quickly compromise thousands of accounts. The malware operates in much the same way as other Facebook scams, such as inviting friends to install it, however the purpose of the highjacking accounts is to generate fraudulent "Likes" which are sold for about US$27 per 1,000.
Facebook+profiles+can+be++hijacked+by+Chrome+extensions+malware

Now, the extension Assolini found was concentrated in Brazil, where Chrome enjoys 45% of the browser market and Facebook is by far the most popular social network. That does not, however, mean that the problem is isolated to Brazil. The malicious extension was installed in numerous countries, including the U.S..

With these potential security risks in mind, "Think twice before installing a Google Chrome extension".
Vulnerability 1618665698562484657

Post a Comment

  1. I have used AVG anti virus for a few years, I would recommend this product to all of you.

    ReplyDelete

  2. Hacking has become a habit to them and they can hack anything hack-able, when it comes to hacking and web solutions i know of a reputable hacker who can get your job done asap and efficient job without traces, have tried them and i got a brilliant result contact them now for your hacking needs of any kind.
    ETHICALHACKING618@GMAIL.COM or text +1(407) 906-1584

    ReplyDelete
  3. My life was falling apart, I was being cheated and abused, I had to know the truth and needed proof. i saw a post about a private investigator (worldcyberhackers) Through Gmail , by a friend. i contacted them and they took care of my needs. they hacked his iphone and gave me all information in all his social media account, facebook,instagram, Whatsapp,and email account. I got all I wanted as proof . I am glad i had a proven truth he was cheating and i have sent them to my Lawyer . I recommend them if you need help. you can contact on whatsApp : +12678773020 or mail.

    ReplyDelete

emo-but-icon

Home item

Zebronics

Recommend on Google

Advertisements

Advertisements

Popular Posts

Random Posts

Recent Posts

ADS

eXTReMe Tracker