An increasing number of malicious Chrome extensions are being forced onto users. The one we analyze can hide itself and receive commands from a remote server in order to hijack the browser with incessant offers, fraud and even tech support scams. The extension ensures it stays in hiding by using a 11 pixel image as its logo and by hooking chrome://extensions and chrome://settings such that any attempt to access those is automatically redirected to chrome://apps.com. Google has pulled this bogus extension from its store.”]