Massive Chrome and Edge Malware Campaign Puts 300,000 Users at Risk
A dangerous malware campaign targeting Google Chrome and Microsoft Edge users has infected approximately 300,000 browsers, according to recent cybersecurity reports. The attack, which has been active since 2021, uses malicious browser extensions to steal sensitive data and hijack search engines.
 |
|---|
| The Google Chrome logo signifies the browser targeted in the massive malware campaign |
How the Attack Works
- Hackers create fake websites offering free versions of popular software like Roblox FPS Unlocker, YouTube, VLC media player, and Steam.
- Users who download the fake software unknowingly install a trojan malware.
- The malware installs malicious browser extensions that:
- Hijack search engines
- Redirect web searches through attacker-controlled servers
- Steal private data
- Execute various malicious commands
 |
|---|
| Malicious browser extensions are a key method used by attackers in the malware campaign targeting Chrome and Edge |
Persistence and Difficulty in Removal
What makes this malware particularly concerning is its ability to achieve persistence on infected systems. Even if users delete the malicious extensions, the malware can reactivate itself upon system restart. The latest versions of the malware can even prevent browser updates, leaving users vulnerable to additional attacks.
How to Protect Yourself
To avoid falling victim to this campaign:
- Only download software from official sources and verified websites
- Be cautious of websites offering free versions of paid software
- Keep your browser and operating system up-to-date
- Use reputable antivirus software
Removing the Malware
If you suspect your system is infected, follow these steps to remove the malware:
- Delete scheduled tasks that reactivate the malware
- Remove specific Registry entries
- Delete associated files and folders (full list available in the ReasonLabs report)
For detailed removal instructions, consult the ReasonLabs blog post or seek assistance from a cybersecurity professional.
As this malware campaign continues to evolve, it's crucial for Chrome and Edge users to remain vigilant and practice safe browsing habits to protect their personal data and system integrity.