Malicious extension lets attackers control Google Chrome remotely

[Gandalf_The_Grey]

Content source

https://www.bleepingcomputer.com/news/security/malicious-extension-lets-attackers-control-google-chrome-remotely/

A new Chrome browser botnet named 'Cloud9' has been discovered in the wild using malicious extensions to steal online accounts, log keystrokes, inject ads and malicious JS code, and enlist the victim's browser in DDoS attacks.

The Cloud9 browser botnet is effectively a remote access trojan (RAT) for the Chromium web browser, including Google Chrome and Microsoft Edge, allowing the threat actor to remotely execute commands.

The malicious Chrome extension isn't available on the official Chrome web store but is instead circulated through alternative channels, such as websites pushing fake Adobe Flash Player updates.

Malicious extension lets attackers control Google Chrome remotely

A new Chrome browser botnet named 'Cloud9' has been discovered in the wild using malicious extensions to steal online accounts, log keystrokes, inject ads and malicious JS code, and enlist the victim's browser in DDoS attacks.

www.bleepingcomputer.com

 

[oldschool]

Users have to go out of their way, way out of their way, to download this kind of stuff, and if they do, it serves them right.

The word!

 

[Zero Knowledge]

True. But if your still using flash then your already owned. Saying that there are a lot of people still using flash to play web games.

 

[piquiteco]

I wonder if with Manifest V3 that google will implement next year in 2023, will these incidents occur. Can anyone say if V3 is beneficial for security?