A new serious warning has been issued for Google Chrome users this week. Experts have found over 100 websites pretending to be trusted services. These websites trick users into installing harmful Chrome extensions that steal data and run malicious code.
These fake sites copy well-known brands and offer extensions that look useful. However, these extensions can secretly connect to harmful servers. They send user information, steal browser cookies, and can control your browser without your knowledge.
DomainTools, a cybersecurity company, discovered this problem. They say the extensions appear to work as expected but also have hidden harmful features. Some fake websites mimic popular services like YouTube, VPN providers, and productivity tools to trick users.
The malicious extensions have powerful permissions. They can read data from every website you visit and run dangerous code. This lets hackers steal passwords, hijack sessions, show unwanted ads, redirect your browsing, and even steal your account information.
These attacks have been happening for over a year. Google has removed some of the dangerous extensions from the Chrome Web Store, but many still remain. DomainTools warns that users must be very careful when installing any extension.
To stay safe, only install extensions from trusted sources. Check the developer’s identity, read user reviews, and avoid extensions that ask for too many permissions. Pay special attention to websites with unusual domain endings like “.TOP,” which are often risky.
Google Chrome users should update their browsers regularly and be cautious when adding new extensions. Staying alert is the best way to avoid these hidden dangers.
