![]() ![]() They commented that "The Register tried to contact the current owner and former owner by email, and we've yet to receive a response. There is no information about the current owner or where they are located. "While there are some limitations on the size of data and amount of requests, this is actually perfect for C&C commands (which are generally small), or for stealing small, but sensitive data – such as authentication tokens," Zdrnja said." How Did Google Respond?Īccording to The Register, Google did not take notice when rumors spread in November about the extension containing malware. The Hacker News expanded on this by saying, "Zdrnja said the adversary created a malicious security add-on that masqueraded as Forcepoint Endpoint Chrome Extension for Windows, which was then installed directly on the browser after enabling Developer mode. Threat researchers have discovered that the extension was capable of bypassing firewalls, data exfiltration, and copying data to hacker-controlled servers. Users who installed the app and then turned on developer mode may have put themselves in even more danger. The Hacker News said, "Users of the extension can recover the tabs using a workaround here, or as an alternative, can also use the latest version available on GitHub ( v7.1.6 ) by enabling Chrome Developer mode." There is no information about who purchased it and is providing updates. New releases (7.1.8 and 7.1.9) showed up in the extension store shortly after that. Originally a clean app, The Great Suspender was sold by the original developer back in June 2020. ![]() Rumors of the malware infection began to surface last November when Microsoft blocked it on Edge. What it does is "suspend" tabs that are not in use and replace them with a gray screen until the user returns to the tab. The Great Suspender is a very popular Chrome extension with more than two million installs. The information gathered so far by The Hacker News claims that the extension contained dangerous malware capable of spying on users’ online activities and tracking them for the purposes of advertising fraud.Īccording to The Hacker News, "The old maintainer appears to have sold the extension to parties unknown, who have malicious intent to exploit the users of this extension in advertising fraud, tracking, and more," Calum McConnell said in a GitHub post." What is The Great Suspender? Microsoft Edge, based on Chromium, directly integrates the suspend functionality of inactive tabs.Last Thursday, Google removed "The Great Suspender" from the Chrome Web Store and disabled the malware-infected extension from users’ computers. On the store there are several alternatives to The Great Suspender, including The Marvellous Suspender. ![]() For each to be the part of the link up to "& uri =" must be deleted. The list of suspended tabs will then be shown. In the Chrome history, the string that identifies the extension must be searched, ie “klbibkeccnjlkjkiokjodocebajanakg“. Fortunately, there is a way to recover the cards. This resulted in the forced closure of suspended cards. The later version 7.1.9 does not contain the malware, but now Google has decided to remove the extension from the Chrome Web Store (the link leads to a 404 page).įor obvious reasons, Google has also disabled the extension already installed by users. The new owner has released the version 7.1.8 with malware included which allows you to steal passwords. The extension is open source and the code is available on GitHub, but in November the original author sold The Great Suspender to an unknown developer. Then just click on the tab to restore the content. Many users have therefore installed the extension The Great Suspender which, as the name suggests, suspends the cards not in the foreground and frees up precious memory. The Mountain View company has disabled The Great Suspender proactively, so users who had installed the add-on must follow a specific procedure to recover closed tabs.Ĭhrome is known for its "RAM hunger", particularly when many tabs are open. One of the extensions for Chrome Most Popular has been removed from the Web Store, as Google detected the presence of malware.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |