Chrome Extension with 100,000 Users Caught Pushing Cryptocurrency Miner

Discussion in 'Security News' started by LASER_oneXM, Dec 29, 2017.

  1. LASER_oneXM

    LASER_oneXM Level 18
    Content Creator

    Feb 4, 2016
    861
    4,465
    university/IT
    Germany / Poland
    Windows 8.1
    Kaspersky
     
    Vasudev, shmu26, spaceoctopus and 9 others like this.
  2. Slyguy

    Slyguy Level 22

    Jan 27, 2017
    1,116
    4,454
    Fortinet Engineer
    USA
    Other OS
    Thanks.

    I submitted to Fortinet Labs TAC, already classified in just a few minutes.

    Submission Date: Fri, 29 Dec 2017 07:28:39 -0800
    URL: Censored
    Updated Category: Malicious Websites
    Update Date: Fri, 29 Dec 2017 08:01:17 -0800
     
  3. Tsiehshi

    Tsiehshi Level 1

    Nov 11, 2017
    44
    120
    Somewhere
    #3 Tsiehshi, Dec 29, 2017
    Last edited: Dec 30, 2017
    It actually seems to date back at least to the 4.4.3.93 version (Dec 8th according to the last modification date of verified_contents.json).

    PS. A Chrome Webstore reviewer said he used to love it until it was updated on 12/7/2017. That's not a contradiction as the extension archive isn't updated every day (probably wasn't updated on the 7th).

    PPS. At 9:34 PM, it got updated to 4.4.4.0 (damn the hackers are fast). And they'll approve it again and again. :censored:

    + 11:30 PM: 4.4.4.01. Once 2 hours or what?

    PPPS. Here's a more detailed version history, which means it started with 4.4.3.91.

    PPPPS. Finally taken down. Good riddance.
     
    Vasudev, shmu26, spaceoctopus and 2 others like this.
Loading...
Similar Threads Forum Date
Half Million Users Infected By Harmful Chrome Extensions Technology News Friday at 12:23 PM
Over 500,000 Users Impacted by Four Malicious Chrome Extensions Security News Tuesday at 1:46 AM
Over 37,000 Chrome Users Installed a Fake AdBlock Plus Extensions Security News Oct 10, 2017