KARACHI: The National Telecom and Information Technology Security Board (NTISB) has warned users to avoid 16 browser extensions due to potential risks of hacking and data breach.
The list included a number of AI and VPN extensions, both of which have seen a surge in demand recently.
In its advisory, the NTISB said hackers are exploiting commonly used browser extensions to “steal personal information” from social media apps, banking apps and other websites.
Extensions are software users can install in their browsers – Google, Mozilla, Microsoft Edge – to add functionality.
They differ from applications because, unlike apps, extensions are not extended to users’ devices and are limited to browsers.
These extensions, mostly developed by third parties, offer a wide range of functions – note-taking, text editing, downloading content, saving passwords, blocking ads, etc.
Like applications, these extensions require extensive permissions and access to sensitive information to function properly.
However, unlike apps, which are either subscription-based or perform a function that earns revenue for the developer, most of these extensions are free and therefore carry major security risks.
A massive attack
The NTISB advisory lists 16 extensions “suspected to be compromised. These include AI Assistant – ChatGupt and Gemini for Chrome, Bard AI Chat Extension, GPT4 with Summary Openi, Chrome Search for Copilot AI Assistant, Vine AI, VPN Est, Interest VPN, WidnesFlex Video Recorder, VDeveloper Video Downloader, Bookmark Favicon Changer, UVoice, Reader Mode, Parrot Chat, Primus, Tracker – Online Calgar Tool, AI Shop Buddy, and Rewards Search Automation etc.
Last month, it was reported that a massive attack by hackers had targeted 35 extensions—including 16 listed by the NTISB—that had stolen data and credentials from more than 2.6 million users. exposed to
One of the targeted extensions, Cyberhaven, revealed that hackers were able to gain access to the extension, allowing them to publish a malicious version on the Chrome Web Store.
The NTISB has warned that hackers are exploiting these “legitimate extensions” by sending malicious code to more of users’ personally identifiable information.
It is recommended that users avoid these extensions and use alternative options.
The advisory states that users should only install trusted extensions and read permissions before granting permissions.
These extensions should be updated regularly, and unwanted extensions should be removed from the browser.
Free VPN Extensions
One of the extensions mentioned in the list – VPNCITY and Intranet VPN – are virtual private networks that allow users to bypass blocked content.
The use of VPNs has increased in Pakistan since last year, when users turned to proxies to access X, which has been banned since February 17, and to avoid disruptions to the wider Internet infrastructure. The scale is bypassed.
Simon Magliano, head of research at VPN review website Top10VPN.com, said that a handful of free VPN apps and browser extensions are safe to use, but a large number of free proxies lack cybersecurity. There are significant risks.
By research Top 10 VPNs In June 2024, it was revealed that about 88% of free VPNs and extensions leaked IP addresses, DNS data and user information.
“Free VPNs are often riddled with aggressive ads or even malware,” Mr Magliano told Dawn.
He said that VPN developers have high operating costs and it is not possible for a reliable VPN service not to charge a subscription fee.
He advised users to research a VPN service and read “as many reviews as possible” before using it.
Published in Dawn, January 27, 2025
