“When we are alerted to extensions to the Web Store that violate our policies, we take action and use these incidents as training material to improve our automated and manual analysis,” said a Google spokesperson. Reuters.
Most add-ons claimed to warn users of websites that are unsafe or posed as services that may convert file formats. Rather, the add-ons attempted to steal user’s browser history and sensitive data that provided credentials for internal business tools.
Awake Security researchers believe that due to the high number of downloads, this is the most malicious Chrome Store campaign. Google has not commented on how this latest spyware compares to previous malicious campaigns, nor has it discussed the severity of the damage.
It is also unclear who was responsible for the spyware campaign, as the developers added false contact information when submitting the add-ons.