Hackers have Web Series Archivesdiscovered a new way to remotely take control of your computer — all through the Google Chrome web browser.
A report from cybersecurity company SquareX lays out the new multifaceted cyberattack, which the firm has dubbed "browser syncjacking."
At the core of the attack is a social engineering element, as the malicious actor first must convince the user to download a Chrome extension. The Chrome extension is usually disguised as a helpful tool that can be downloaded via the official Chrome Store. It requires minimal permissions, further cementing its perceived legitimacy to the user. According to SquareX, the extension actually does usually work as advertised, in order to further disguise the source of the attack from the user.
Meanwhile, secretly in the background, the Chrome extension connects itself to a managed Google Workspace profile that the attacker has set up in advance. With the user now unknowingly signed into a managed profile, the attacker sends the user to a legitimate Google support page which is injected with modified content through the Chrome extension, telling the user they need to sync their profile.
When the user agrees to the sync, they unwittingly send all their local browser data, such as saved passwords, browsing history, and autofill information, to the hacker's managed profile. The hacker can then sign into this managed profile on their own device and access all that sensitive information.
The attack up to this point already provides the hacker with enough material to commit fraud and other illicit activities. However, browser syncjacking provides the hacker with the capability to go even further.
Using the teleconferencing platform Zoom as an example, SquareX explains that using the malicious Chrome extension, the attacker can send the victim to an official yet modified Zoom webpage that urges the user to install an update. However, the Zoom download that's provided is actually an executable file that installs a Chrome browser enrollment token from the hacker's Google Workspace.
After this occurs, the hacker then has access to additional capabilities and can gain access to the user's Google Drive, clipboard, emails, and more.
The browser syncjacking attack doesn't stop there. The hacker can take one further step in order to not just take over the victim's Chrome profile and Chrome browser, but also their entire device.
Through that same illicit download, such as the previously used Zoom update installer example, the attacker can inject a "registry entry to message native apps" by weaponizing Chrome’s Native Messaging protocol. By doing this, the attacker basically sets up a connection "between the malicious extension and the local binary." Basically, it creates a flow of information between the hacker's Chrome extension and your computer. Using this, the hacker can send commands to your device.
What can the hacker do from here? Pretty much anything they want. The attacker will have full access to the user's computer files and settings. They can create backdoors into the system. They can steal data such as passwords, cryptocurrency wallets, cookies, and more. In addition, they can track the user by controlling their webcam, take screenshots, record audio, and monitor everything input into the device.
As you can see, browser syncjacking is nearly completely unrecognizable as an attack to most users. For now, the most important thing you can do to protect yourself from such a cyberattack is to be aware of what you download and only install trusted Chrome extensions.
Topics Cybersecurity Google
Optogenetics: A Virtual Reality System for Controlling Living Cells
Microsoft targets Apple with super
The curious origin of the word 'dongle'
Björk shares her experience of sexual harassment by a 'Danish director'
Best Samsung Galaxy Watch Ultra deal: Save $200 at Best Buy
Roy Dotrice, Game of Thrones actor and audiobook narrator, dies at 94
The Academy has expelled Harvey Weinstein. That's a start.
Bob Weinstein on Harvey: 'He should never be allowed back, ever.'
NYT Connections Sports Edition hints and answers for February 15: Tips to solve Connections #145
Striking images reveal wineries devastated by wildfires
Clean energy projects soared in 2016 as solar and wind got cheaper
The outrage about the Women's Convention is missing one key point
Hidden data suggests new Pokémon and a Halloween event are coming to 'Pokémon Go'
Admit it, you're guilty of 'binge
Elon Musk told Donald Trump what to do about the Paris Climate Agreement
Twitter's Jack Dorsey promises changes to anti
New Zealanders worry about a 'chipocalypse' as potato supply drops
Here's how easy it is for anyone to use Facebook like Russian actors did
Did Elon Musk push former FAA leader out? Trump admin responds after deadly plane crash
New Google Doodle is a colourful celebration of Selena Quintanilla's life
Google Maps' new update makes it easier to find places around you17 times 'Stranger Things' star Millie Bobby Brown's Instagram game was 11/10Your commute just turned into a workout session on this trainGal Gadot clears up her comments on working with Brett RatnerRotten Tomatoes is hiding its 'Justice League' score, but we have a guessGoogle Maps' new update makes it easier to find places around youTesla hits back at employee's racial discrimination claimsGoogle's trying to make your job search less difficultTop media watchdog accused of playing dirty to help Trump's friendTesla is a 'hotbed for racist behavior,' class17 times 'Stranger Things' star Millie Bobby Brown's Instagram game was 11/10Swedish soccer players totally demolish set on live TV after qualifying for World Cup'Titanic' is returning to cinemas as a remastered versionFace ID on Apple iPhone X meets its match: a 10'Star Wars' devs had a whole bunch of nonGoogle Pixel Buds review: The best wireless earbuds for Pixel ownersThe sportsJennifer Lawrence, Emma Stone and more weigh in on sexual harassmentGoogle Maps' new update makes it easier to find places around youBluetooth exploit puts Amazon Echo and Google Home devices at risk A Panorama of ‘Middlemarch’ Ways and Means by Sadie Stein Announcing Issue 200! by Sadie Stein Staff Picks: ‘Excellent Women,’ David Lynch Remixes by The Paris Review Win Two Free Tickets to ‘Seminar’ by Sadie Stein Emma Larkin, Bangkok by Matteo Pericoli Leanne Shapton by Thessaly La Force Two ‘Paris Review’ Events Not to Be Missed by The Paris Review Join Us for Our 2012 Spring Revel by Sadie Stein Staff Picks: ‘At Last,’ Ambivalence by The Paris Review Document: Nabokov’s Notes by Sarah Funke Butler Loose Lips by Laura Moser Staff Picks: Bathtub Reading, Germaine Tailleferre by The Paris Review Slanderous Correspondence; Imitations by Lorin Stein Staff Picks: ‘Bunting’s Persia,’ Dickinson’s Manuscripts by The Paris Review Those Are Marshmallow Clouds Being Friendly by Rachael Maddux Xi Chuan, Beijing by Matteo Pericoli Alexander Pope’s “The Rape of the Lock” by Angus Trumble Ezra Pound’s “Exile’s Letter” by Edmund White Staff Picks: The Kid, ‘Reading for My Life’ by The Paris Review
3.1796s , 8229.515625 kb
Copyright © 2025 Powered by 【Web Series Archives】,Openness Information Network