Google to roll out new Chrome safeguard against malicious extensions

Apr 17, 2013
1

Google is mighty proud of Chrome's security, something it has taken a proactive stance on. Back in December, the Internet giant put the kibosh on silent extensions, which are the sleeper-cell kind that slip in unnoticed and unwanted, installing by default. This move has been expanded on, with the company announcing earlier today a new safeguard that ensures malicious extensions stay out of your browser.

This safeguard was just implemented into Chrome browser, and involves additional measures that keep an eye on extensions that don't follow the path-laid-before-it mechanisms Google has deemed the proper route to extension installation. If a piece of software doesn't follow these measures, Chrome will assume it is malware and will flag it as such.

The malware designation will be applied because such methods are typically used to circumvent the silent installation blockers that Google has in place for the purpose of fixing something in place that doesn't belong. The way it does this results in installation by default, and as such the user will not be able to disable it or uninstall it like an ordinary extension. Other varieties of malicious software that use other methods to get around the system are also detected and flagged.

Users will be made known of this attempted installation via a Safe Browsing warning that will appear stating that a malicious download is present. The warnings won't start appearing for another week or so, however. The result will not only be better protection, but also performance improvements and a better experience, says Google.

[via Google]


Must Read Bits & Bytes