Google will block Chrome add-ons from third-party sites
Posted on 17 July 2012.
Google has instituted a new rule that should keep Chrome users safe from malicious add-ons: starting with version 21.0.1180.41 (currently in beta), the browser will block all third-party extensions, apps, and user scripts that are not hosted on the Chrome Web Store.


The move is aimed at preventing the all-too-popular attacks mounted through booby-trapped websites that automatically trigger the installation of malicious extensions. These extensions often keep tabs on what pages the user is visiting.

Google is looking to check all third-party extensions that are submitted to the Chrome Web Store for signs of malicious functionality.

The inline install option that allows third-party extensions hosted in the store to be downloaded through the developer's own website will still be available.







Spotlight

Cloned, booby-trapped Dark Web sites steal bitcoins, login credentials

Apart from being a way for dissidents and journalists to do their business without being spotted and identified by "the powers that be", the Dark Web is also a place where criminals sell and buy illegal wares and services and, apparently, where they also get robbed by scammers.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Fri, Jul 3rd
    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //