News
Latest News
news bulletin
Breaking Headlines
Israel-Gaza War Updates
Variety and Tech
Sports News
Middle East News
World News
Lebanon News
Press Highlights
Lebanon Economy
News Bulletin Reports
Other News
Breaking Headlines
Israel-Gaza War Updates
Variety and Tech
Sports News
Middle East News
World News
Lebanon News
Press Highlights
Lebanon Economy
News Bulletin Reports
Beirut
28
o
Bekaa
22
o
Keserwan
28
o
Metn
28
o
Mount Lebanon
22
o
North
27
o
South
25
o
Live
Video
Audio
Schedule
shows
العربية
watching now
Nightly News Bulletin
SUBSCRIBE
Home
Notification
Live
Video
Audio
shows
Beirut
28
o
Bekaa
22
o
Keserwan
28
o
Metn
28
o
Mount Lebanon
22
o
North
27
o
South
25
o
News
Programs
The News
Breaking Headlines
Israel-Gaza War Updates
Variety and Tech
Sports News
Middle East News
World News
Lebanon News
Press Highlights
Lebanon Economy
News Bulletin Reports
Programs
Series
Movies
Documentaries
Variety
Comedy
Talk Show
News Bulletin
Sports
Breaking News
Latest News
Highlighted News
Most Read
Videos
العربية
Watch the latest programs and the latest developments on your favorite screen
Shows
Join millions of followers
Who We Are
Contact Us
Advertise With Us
Careers
Channel frequencies
Privacy Policy
Terms and Conditions
Massive spying on users of Google's Chrome shows new security weakness
Variety
19-06-2020 | 07:23
High views
Share
Share
5
min
Massive spying on users of Google's Chrome shows new security weakness
A newly discovered spyware effort attacked users through 32 million downloads of extensions to Google's market-leading Chrome web browser, researchers at Awake Security told Reuters, highlighting the tech industry's failure to protect browsers as they are used more for email, payroll and other sensitive functions.
Alphabet Inc's Google said it removed more than 70 of the malicious add-ons from its official Chrome Web Store after being alerted by the researchers last month.
“When we are alerted of extensions in the Web Store that violate our policies, we take action and use those incidents as training material to improve our automated and manual analyses,” Google spokesman Scott Westover told Reuters.
Most of the free extensions purported to warn users about questionable websites or convert files from one format to another. Instead, they siphoned off browsing history and data that provided credentials for access to internal business tools.
Based on the number of downloads, it was the most far-reaching malicious Chrome store campaign to date, according to Awake co-founder and chief scientist Gary Golomb.
Google declined to discuss how the latest spyware compared with prior campaigns, the breadth of the damage, or why it did not detect and remove the bad extensions on its own despite past promises to supervise offerings more closely.
It is unclear who was behind the effort to distribute the malware. Awake said the developers supplied fake contact information when they submitted the extensions to Google.
“Anything that gets you into somebody’s browser or email or other sensitive areas would be a target for national espionage as well as organized crime,” said former National Security Agency engineer Ben Johnson, who founded security companies Carbon Black and Obsidian Security.
The extensions were designed to avoid detection by antivirus companies or security software that evaluates the reputations of web domains, Golomb said.
If someone used the browser to surf the web on a home computer, it would connect to a series of websites and transmit information, the researchers found. Anyone using a corporate network, which would include security services, would not transmit the sensitive information or even reach the malicious versions of the websites.
“This shows how attackers can use extremely simple methods to hide, in this case, thousands of malicious domains,” Golomb said.
After this story's publication, Awake released its research, including the list of domains and extensions. https://awakesecurity.com/blog/the-internets-new-arms-dealers-malicious-domain-registrars/
All of the domains in question, more than 15,000 linked to each other in total, were purchased from a small registrar in Israel, Galcomm, known formally as CommuniGal Communication Ltd.
Awake said Galcomm should have known what was happening.
In an email exchange, Galcomm owner Moshe Fogel told Reuters that his company had done nothing wrong.
“Galcomm is not involved, and not in complicity with any malicious activity whatsoever,” Fogel wrote. “You can say exactly the opposite, we cooperate with law enforcement and security bodies to prevent as much as we can.”
Fogel said there was no record of the inquiries Golomb said he made in April and again in May to the company’s email address for reporting abusive behavior, and he asked for a list of suspect domains.
After publication, Fogel said the majority of those domain names were inactive and that he would continue to investigate the others.
The Internet Corp for Assigned Names and Numbers, which oversees registrars, said it had received few complaints about Galcomm over the years, and none about malware.
While deceptive extensions have been a problem for years, they are getting worse. They initially spewed unwanted advertisements, and now are more likely to install additional malicious programs or track where users are and what they are doing for government or commercial spies.
Malicious developers have been using Google’s Chrome Store as a conduit for a long time. After one in 10 submissions was deemed malicious, Google said in 2018 https://blog.chromium.org/2018/10/trustworthy-chrome-extensions-by-default.html it would improve security, in part by increasing human review.
But in February, independent researcher Jamila Kaya and Cisco Systems’ Duo Security uncovered https://duo.com/labs/research/crxcavator-malvertising-2020 a similar Chrome campaign that stole data from about 1.7 million users. Google joined the investigation and found 500 fraudulent extensions.
“We do regular sweeps to find extensions using similar techniques, code and behaviors,” Google's Westover said, in identical language to what Google gave out after Duo's report.
REUTERS
Breaking Headlines
Google
Chrome
Spying
Subscribe to our VOD
SUBSCRIBE
Our visitors readings
d-none hideMe
0
Lebanon News
2025-05-06
Municipal and mukhtar election results for Aley, Keserwan, and Jbeil district announced
Lebanon News
2025-05-06
Municipal and mukhtar election results for Aley, Keserwan, and Jbeil district announced
0
Middle East News
2025-06-17
Israel's El Al Airlines expects to begin rescue flights Wednesday
Middle East News
2025-06-17
Israel's El Al Airlines expects to begin rescue flights Wednesday
0
Lebanon News
2025-07-02
Finance Minister Jaber says reviving banking sector and ensuring fairness for depositors a top priority
Lebanon News
2025-07-02
Finance Minister Jaber says reviving banking sector and ensuring fairness for depositors a top priority
0
Israel-Gaza War Updates
2025-05-06
UN humanitarian office rejects Israeli plan to shut down current aid system in Gaza
Israel-Gaza War Updates
2025-05-06
UN humanitarian office rejects Israeli plan to shut down current aid system in Gaza
Videos
d-none hideMe
0
Lebanon News
2025-07-01
Massive fire erupts at unregulated dumpsite in Bchannine, Zgharta district
Lebanon News
2025-07-01
Massive fire erupts at unregulated dumpsite in Bchannine, Zgharta district
0
Lebanon News
2025-06-10
Clash between Lebanese Army and residents of Deir Qanoun Al Nahr results in injuries (Video)
Lebanon News
2025-06-10
Clash between Lebanese Army and residents of Deir Qanoun Al Nahr results in injuries (Video)
0
Lebanon News
2025-06-04
Mexico dedicates garden around Lebanese Emigrant Statue in Beirut to mark 80 years of diplomatic ties
Lebanon News
2025-06-04
Mexico dedicates garden around Lebanese Emigrant Statue in Beirut to mark 80 years of diplomatic ties
0
Lebanon News
2025-05-19
President Aoun to seek Egyptian support for Lebanese Army in detecting explosives and tunnels
Lebanon News
2025-05-19
President Aoun to seek Egyptian support for Lebanese Army in detecting explosives and tunnels
0
Lebanon News
2025-05-15
LBCI Exclusive: US steps up pressure on Hezbollah, Morgan Ortagus details sanctions and vision for Lebanon's future
Lebanon News
2025-05-15
LBCI Exclusive: US steps up pressure on Hezbollah, Morgan Ortagus details sanctions and vision for Lebanon's future
0
Lebanon News
2025-05-11
Kuwait rolls out official welcome for Lebanon's President Aoun – video
Lebanon News
2025-05-11
Kuwait rolls out official welcome for Lebanon's President Aoun – video
0
Lebanon News
2025-05-11
Security incidents temporarily disrupt voting in several Akkar and Minieh-Danniyeh centers
Lebanon News
2025-05-11
Security incidents temporarily disrupt voting in several Akkar and Minieh-Danniyeh centers
0
News Bulletin Reports
2025-05-09
EU ambassador says 'we are not just donors, but genuine partners to Lebanon': Insights from exclusive LBCI interview
News Bulletin Reports
2025-05-09
EU ambassador says 'we are not just donors, but genuine partners to Lebanon': Insights from exclusive LBCI interview
0
Lebanon News
2025-04-23
US envoy Morgan Ortagus hails Lebanese diaspora, says country stands at a crossroads
Lebanon News
2025-04-23
US envoy Morgan Ortagus hails Lebanese diaspora, says country stands at a crossroads
Most read
d-none hideMe
24 hours
7 days
Month
1
Lebanon News
06:18
US Envoy Tom Barrack hails 'historic moment' for Lebanon, urges unity and reform
Lebanon News
06:18
US Envoy Tom Barrack hails 'historic moment' for Lebanon, urges unity and reform
2
Lebanon News
11:50
Sources to LBCI: Lebanese Mufti, Syrian President dismiss Israeli claims over land swap deal
Lebanon News
11:50
Sources to LBCI: Lebanese Mufti, Syrian President dismiss Israeli claims over land swap deal
3
News Bulletin Reports
12:48
US envoy Tom Barrack’s message to Lebanon: One country, one people, one army
News Bulletin Reports
12:48
US envoy Tom Barrack’s message to Lebanon: One country, one people, one army
4
News Bulletin Reports
13:00
Lebanon's Grand Mufti visits Damascus in symbolic shift: Inside Derian's Syria meetings
News Bulletin Reports
13:00
Lebanon's Grand Mufti visits Damascus in symbolic shift: Inside Derian's Syria meetings
5
Lebanon News
12:28
Lebanon's President tells UK Foreign Secretary Israeli occupation hinders state authority
Lebanon News
12:28
Lebanon's President tells UK Foreign Secretary Israeli occupation hinders state authority
6
Lebanon News
02:22
PM Salam condemns armed displays in Beirut, orders legal action
Lebanon News
02:22
PM Salam condemns armed displays in Beirut, orders legal action
7
Lebanon News
07:09
LBCI sources: Saudi envoy departs Lebanon after pushing for arms control and reforms
Lebanon News
07:09
LBCI sources: Saudi envoy departs Lebanon after pushing for arms control and reforms
8
News Bulletin Reports
13:05
Israel, Hamas near agreement: Could a prisoner deal be the first step toward ending Gaza war?
News Bulletin Reports
13:05
Israel, Hamas near agreement: Could a prisoner deal be the first step toward ending Gaza war?
Download now the LBCI mobile app
To see the latest news, the latest daily programs in Lebanon and the world
Google Play
App Store
We use
cookies
We use
cookies
to make
your experience on this
website better.
Accept
Learn More