Skip to main content
  1. Home
  2. Computing
  3. News

20 million Chrome users are fooled into downloading fake ad blockers

By

Google removed a number of fake ad blockers from its Chrome store after an AdGuard researcher discovered that these extensions concealed malicious scripts. The code hidden within these fake ad blocking extensions was used to collect information about a user’s browsing session and to change the browser’s behavior.

Some of these extensions were popular, with one fake ad blocker garnering as many as 10 million downloads. Even the least popular extension, Webutation, had 30,000 downloads.

Recommended Videos

These malicious ad-blocking extensions merely copied the legitimate ad blocking code from real ad blockers and added its own harmful one.

Related: 
Half of Google Chrome extensions may be collecting your personal data

“All the extensions I’ve highlighted are simple rip-offs with a few lines of code and some analytics code added by the ‘authors,’” AdGuard’s Andrew Meshkov wrote. “Instead of using tricky names they now spam keywords in the extension description trying to make to the top search results.”

Given that most casual users don’t really pay attention to the name of an extension as long as it was somewhere near the top of their search results, it’s easy to deceive a large number of Chrome users to download fake ad blockers. Combined, all five of the flagged — and now removed — ad blockers generated 20 million downloads, according to AdGuard.

“Basically, this is a botnet composed of browsers infected with the fake adblock extensions. The browser will do whatever the command center server owner orders it to do,” he wrote.

The malicious code sends the data it collects, including your browsing information, to a remote server. The server then sends a command to an extension that is concealed inside an innocent image, and the commands are executed as scripts to change the way your browser behaves.

To protect yourself, AdGuard recommends that you only download browser extensions from trusted authors and companies. If you don’t know the author, Meshkov recommends skipping the extension. Even if the extension comes from a trusted author, the software could be sold to another party in the future, which could then change the intended use or behavior of the extension.

If you’re looking for an ad block, be sure to check out our list of recommendations for some of the best ad blocking extensions.

Chuong Nguyen
Chuong Nguyen
Former Computing Writer
Silicon Valley-based technology reporter and Giants baseball fan who splits his time between Northern California and Southern…
Topics

Editors’ Recommendations

I built a mini gaming PC to prove you don’t need a console
Consoles are great for many people, but here’s why I started questioning if I really needed one.
A PC built using the Deepcool CH160 with an Xbox Series S controller placed next to it

Let’s get one thing straight, I don’t have anything against consoles. I grew up with them, spent countless hours, and still think they’re great for a lot of people. But every time I consider buying a gaming console today, I start thinking about the drawbacks. Consoles have limited upgrade paths, overpriced games and higher costs for online services, and then there is the never ending tug-of-war between performance and fidelity modes.

As someone who writes about PCs for a living, I know that under the hood, consoles are basically small gaming PCs, just without the freedom of what makes a PC, a PC.

Read more
ChatGPT advice ‘influenced’ man into psychosis, medical journal claims
Human and robot hand over ChatGPT.

Earlier this year, an uplifting story detailed how a mother turned to ChatGPT and discovered that her son was suffering from a rare neurological disorder, after more than a dozen doctors had failed to identify the real problem. Thanks to the AI chatbot, the family was able to access the required treatment and save a life.

Not every case of ChatGPT medical evaluation leads to a miraculous outcome. A report now claims ChatGPT doled out misleading medical advice ended up giving a person a rare condition called Bromide Intoxication, or Bromism, that leads to various neuropsychiatric issues such as psychosis and hallucinations. 

Read more
GPT-4o is back on ChatGPT; OpenAI relents following huge backlash
Deletion of older models forces radical rethink from CEO Altman
Sam Altman on stage with GPT-5 launch

OpenAI, the makers of ChatGPT, have performed something of an about-face after fans were upset that it deleted the older models to only allow users to use the new GPT-5 model.

What happened? The launch of the new GPT model caused much excitement when a livestream was announced on August 6.

Read more