Gadgets

Google Chrome's data sync feature was used to steal user data


A Croatian cyber security specialist has discovered a malicious extension in Chrome that allows users to access information from a user's browser through the data synchronization function.

Synchronization is a feature of the Chrome web browser,which is used to save copies of custom Chrome bookmarks, browsing history, passwords, and browser settings and extensions to Google cloud servers. As a result of synchronization of various devices, the user will be able to work on them without resorting to data transfer or additional settings.

Expert Bojan Zdrnya reported that the maliciousthe extension used the Chrome sync feature as a way to communicate with a remote command and control (C&C) server to extract data from infected browsers.

The extension is disguised as a software applicationSecurity from Forcepoint and contains malicious code that used Chrome's sync functionality to allow attackers to control the infected browser.

Source: zdnet