Google hasremoved 34 malicious online window extensions from its Chrome Web Storethat collectively had adownload count of 87 million.
Although these extensions featured legitimate functionality, they could modify search results and push spam or unwanted ads.
He explained that the code was made to look like alegitimate extension API wrapper.
But, unfortunately, this code allowed theserasearchtop[.
]com website to inject arbitrary JavaScript codeinto every webpage a user viewed.
However, the codes purpose remained unknown, as Palant did not detect any malicious activity.
Although Palant reported his findings to Google, the extensions remained available in the Chrome Web Store.
Palant hadlisted34 malicious extensionson his website, with a total download count of 87 million.
As of date,all these malicious extensions have been removedby Google from theChrome Web Store.
However, this does not automatically deactivate or uninstall them from their web browsers.
Hence, users are recommended to uninstall them from their devices manually.
