Chrome Extension Pushing Out Cryptominer

Discussion in '[H]ard|OCP Front Page News' started by Montu, Dec 29, 2017.

  1. Montu

    Montu [H]ard DCOTM x4

    Messages:
    6,727
    Joined:
    Apr 25, 2001
    It appears that over 100K users have downloaded a Chrome extension call Archive Poster and is mining Monero whenever the browser is open. It seems like everyday there's a new cryptoming malware release and all the browsers are being hijacked one way of the other. Also, this thing has been reported to Google for weeks and it's still available for download on the Chrome Web Store. At this time it's not known if it's an intentional addition to the extension or not.

    Google doesn't seem to care, allowing the extension to continue to be available on the official Chrome Web Store. A user even reported Archive Poster on the Google Chrome Help Forum, but a Google staffer told the user "to get in touch with the extension developer for further assistance."
     
  2. katanaD

    katanaD Limp Gawd

    Messages:
    476
    Joined:
    Nov 15, 2016
    you know.. its kinda funny. MS Edge has very few extensions, and because of that, it could soon be the safest browser to use

    hahahahaha
     
  3. BSmith

    BSmith Limp Gawd

    Messages:
    387
    Joined:
    Nov 9, 2017
    Well, if the measure of number of vulnerabilities, for 2017, is any measure, then take the following for what it is worth.

    Firefox: 1
    Chrome: 153
    Safari: 175
    Edge: 363
    iOS: 379
    Android: 841

    That is the total vulnerabilities discovered in 2017. It is not a reflection of how many are still outstanding or how many were fixed.
     
  4. Kdawg

    Kdawg Limp Gawd

    Messages:
    480
    Joined:
    Aug 12, 2017
    wow, google has a shitty record. so many vulnerabilities with chrome and android.

    I'm just asking to be hacked, with my unsupported EOL android marshmallow and chrome browser.