malicious Chrome extensions masquerade as helpful applications, ranging from games and utilities to social media sidebars. However, although they appear to be legitimate applications, the extensions inject code into the background of the user’s browsing sessions. These browser infiltrations lead to hackers stealing user data and injecting ads and harmful JavaScript into every site that users visit. Here’s the complete list of extensions pinpointed by Socket. Extensions with more than 1,000 downloads consist of:
- Web Client for TikTok
- Web Client for Telegram – Teleside
- YouSide – Youtube Sidebar
- Web Client for Youtube – SideYou
- Formula Rush Racing Game
- Page Auto Refresh
- Page Locker
- Text Translation
- Web Client for Rugby Rush – SideGame
- Telegram Multi-account
- Black Beard Slot Machine
- Clear Cache Plus
- Speed Test for Chrome – WiFi SpeedTest
Experts recommend promptly removing any of these extensions from your Chrome web browser. To accomplish this, click on the three dots located in the upper right corner of your browser window. Then, hover over the tab labeled “Extensions” and click on the side panel, “Manage Extensions,” which will direct you to a list of all your Chrome extensions. If any of the 108 malicious extensions mentioned in the Socket report show up in this window, you should eliminate them without delay. Additionally, users are urged to log out of all Telegram web and mobile sessions. This can be done by navigating to the “Devices” section in their Telegram “Settings.” Users who have logged into the game and sidebar extensions are likely to have compromised their Google accounts and should review third-party access by visiting myaccount.google.com/permissions.