27 Out of 100 Chrome Extensions Insecure

Icedrake · October 21, 2011

Security researchers Nicholas Carlini, Adrienne Porter Felt, and Prateek Saxena reviewed 50 popular and 50 random Chrome extensions from the official Chrome Web Store for security vulnerabilities and discovered that 27 of the 100 extensions “leak all of their privileges to a web or WiFi attacker”. These 27 extensions account for a total of 51 vulnerabilities. Seven of the vulnerable extensions have more than 300k users each according to data provided by the Chrome Web store.

50 popular extensions... I'll bet that I use quite a few of those popular extensions. Now if only I knew what those 50 popular extensions were. Another thing to think about before installing loads of extensions I guess.

Rest of the article: http://www.ghacks.net/2011/10/12/27-out-of-100-chrome-extensions-insecure/

Nergal · October 21, 2011

Wow, that's quite disturbing (though makes sense, Apps in the Android App cat are like that too)

Winapp2.ini · October 21, 2011

Aw jeez, that's a lot. Some might see this as a reason to install 100 different antiviruses :lol:

Andavari · October 21, 2011

Some might see this as a reason to install 100 different antiviruses

Get the one with Ask.com Toolbar and Uniblue ad's in it, I'm sure it's really safe and doesn't leak anything. :lol: Then again don't!

Winapp2.ini · October 21, 2011

Ask toolbar. Oh god why?

Sign In

27 Out of 100 Chrome Extensions Insecure

Recommended Posts

Icedrake

Link to comment

Share on other sites

Nergal

Link to comment

Share on other sites

Winapp2.ini

Link to comment

Share on other sites

Andavari

Link to comment

Share on other sites

Winapp2.ini

Link to comment

Share on other sites

Create an account or sign in to comment

Create an account

Sign in

Browse

Activity

Home

Mobile

Business

Important Information