By a wide margin, Google Chrome is currently the most used web browser worldwide. One of the reasons the Google browser is so well-liked is that it supports a variety of extensions that improve user experience and productivity.
According to a recent McAfee analysis, five Google Chrome extensions were allegedly stealing users' browsing information. These five extensions have been downloaded by more than 1.4 million people. These add-ons include AutoBuy Flash Sales, FlipShope - Price Tracker Extension, Netflix Party, Netflix Party 2, Full Page Screenshot Capture, and Netflix Party.
The five extensions were Netflix Party and Netflix Party 2, which received the most downloads. By synchronising the videos, these extensions allow users to watch Netflix content together even when they are in separate locations. YouTube Partyhas over 800,000 downloads, whereas Netflix Party 2 Chrome Extension has over 300,000 downloads.
The study claims that these extensions loaded a multipurpose script that sends surfing information to a domain under the control of the attacker. Each time a user accesses a new URL, this domain receives their surfing information. The information consists of a referral URL that has been encoded, the user ID, device location, country, and zip code. With the help of this, they can add code to active eCommerce websites. The site's cookies are changed during this procedure to enable the extension's developers to earn affiliate commissions on all purchases.
The extensions for Netflix Play, Netflix Play 2, and AutoBuy Flash Sales have been taken down from the Chrome Web Store. On the other side, you can still download the other two extensions.