Google removed 106 Chrome browser extensions Thursday from its Chrome Web Store in response to a report that they were being used to siphon sensitive user data. Researchers alleged millions of Chrome users have been targeted by threat actors. The extensions were free and designed to alert users to questionable websites or convert files. Google said it used the extensions to not only steal data, but also to create persistent footholds on corporate networks. Over 100 networks were abused, giving threat actors a foothold on financial service firms, oil and gas companies, healthcare and pharmaceuticals.
Source: https://threatpost.com/google-yanks-106-malicious-chrome-extensions/156731/