Google is adding a couple of new badges to the Chrome web store that will tell users if an extension comes from a verified developer and if it has been vetted for security and user experience. Chrome browser extensions are convenient, but the degree to which they have been exploited in the not-too-distant past is also worrying. From stealing data and malicious code injection to pushing adware and redirecting users to malware distribution pages, Chrome extensions continue to be abused by bad actors.
In 2020, cybersecurity firm Awake uncovered a massive spyware attack that was launched by weaponizing Chrome extensions. Over a hundred malefic Chrome extensions were spotted, collectively amassing over 32 million downloads before being taken down by Google. Aside from hosting malware, these Chrome extensions were loaded with surveillance tools that could grab screenshots, scrape clipboard contents, steal log-in credentials, and perform keystroke logging to figure out passwords.
Related: These Are The Best Chrome Extensions For Privacy
A huge part of the problem is the inability to discern a legitimate Chrome extension from a malicious one, especially for folks who aren’t armed with the requisite digital skills to identify the red flags. To solve the aforementioned dilemma, Google will award two kinds of badges to trustworthy extensions listed on the Chrome web store. The first one is Featured, a badge awarded to extensions that have passed Google’s own manual review for adhering to security practices and offering the best user experience. An extension that flaunts the Featured badge must follow the latest platform rules and user privacy tenets. Moreover, these extensions must also offer a detailed description and high-quality
Read more on screenrant.com