Google Chrome

Dashlane password manager’s Chrome extension has disappeared

The Dashlane Password Manager browser extension was suddenly removed from the Chrome web store this weekend.

Whoops! LastPass accidentally deleted its browser extension from the Chrome store. But it’s back now

Someone at LastPass must be feeling 5!ck as a p4rr0t right now, after human error meant that its browser extension was accidentally deleted from the Chrome web store.

Although an embarrassing goof, it’s something of a storm in a teacup security-wise.

bitdefender.com

Automatic 4K/HD for YouTube extension pulled from Chrome Store for pop-up ad abuse

A popular browser extension has been removed by Google from the Chrome Web Store after it started spamming users with irritating pop-up advertisements.

Read more in my article on the Hot for Security blog.

tripwire.com

Google Chrome extension warns if your password has been leaked

Google has released an optional extension for its Chrome browser that will trigger a visual warning if it determines you are using a username/password combination that it knows to be unsafe.

Read more in my article on the Tripwire State of Security blog.

tripwire.com

Malicious Chrome extension which sloppily spied on academics believed to originate from North Korea

Computer users are being reminded once again to take care over the browser extensions they install after security experts discovered a hacking campaign that has been targeting academic institutions since at least May 2018.

Read more in my article on the Tripwire State of Security blog.

bitdefender.com

Search for Chrome on Bing, and you might get a nasty surprise

It’s 2018, and you can still end up with your computer compromised by searching for Google Chrome in Microsoft Bing.

Read more in my article on the Hot for Security blog.

Smashing Security #094: Rogue browser extensions, Twitter presence, and how to cheat in exams

What’s the danger when browser extensions go bad? Is Twitter sharing your online status a boon for stalkers? And which of the show’s hosts is going to admit to cheating in their exams?

All this and much much more is discussed in the latest edition of the award-winning “Smashing Security” podcast hosted by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist David McClelland.

If an extension goes rogue, everything you do in your browser is compromised

The official Chrome browser extension for Mega.nz was compromised with a malicious update, stealing passwords and private keys.

Keep your browser extensions to a minimum, and always be wary if they ask for elevated permissions.

Smashing Security #088: PayPal’s Venmo app even makes your drug purchases public

Not one of Google’s 85,000 employees has had their accounts compromised by phishing in a year.  How have they done it? Find out in this podcast.

Also, we discuss with special guest Scott Helme how websites still using HTTP are now marked as “not secure” by Google Chrome, and if you’re buying drugs via PayPal’s Venmo app you should say goodbye to privacy.

All this and much much more is discussed in the latest edition of the award-winning “Smashing Security” podcast hosted by computer security veterans Graham Cluley and Carole Theriault.

Google Chrome users met with ‘Not secure’ warnings when visiting HTTP sites

If you’re still running a website that is using insecure HTTP then it’s probably too late.

Some of your website’s visitors are going to be greeted with a message that tells them that they can’t trust your website to be secure.

welivesecurity.com

All HTTP websites to soon be marked as ‘not secure’ by Google Chrome

If you’re still running a website that is using insecure HTTP then it’s time to wake up and drink the coffee.

Because unless you take action soon, you’re going to find many of your visitors are going to distrust your website.

Read more in my article on the We Live Security blog.

bitdefender.com

Security hole meant Grammarly would fix your typos, but let snoopers read your private writings

A Google vulnerability researcher has found a gaping security hole in a popular web browser extension, that could have potentially exposed your private writings on the internet.

Read more in my article on the Hot for Security blog.

Smashing Security podcast #046: Good beard bad beard

Bearded man entangled in dark web drugs market bust, Google researches how to make browser security warnings less confusing, and “bedroom entertainment systems” (ahem) probed for security holes.

All this and more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Rich Baldry.

bitdefender.com

First ever crypto-mining Chrome extension discovered

A Chrome browser extension, with over 140,000 users, is gobbling up the resources of users’ computers by secretly mining for virtual cash.

Read more in my article on the Hot for Security blog.

tripwire.com

Hackers hijack popular Chrome extension to inject code into web developers’ browsers

Criminals hacked into a developer’s account, and modified a Chrome browser extension used by over a million people to push unwanted adverts.

Read more in my article on the Tripwire State of Security blog.

tripwire.com

Google is building an ad-blocker into Google Chrome, report claims

Google, an advertising company, is planning to introduce ad-blocking technology into the world’s most popular web browser – Google Chrome.

Read more in my article on the Tripwire State of Security blog.