Hackers have Pretty Ex-Girlfrienddiscovered a new way to remotely take control of your computer — all through the Google Chrome web browser.
A report from cybersecurity company SquareX lays out the new multifaceted cyberattack, which the firm has dubbed "browser syncjacking."
At the core of the attack is a social engineering element, as the malicious actor first must convince the user to download a Chrome extension. The Chrome extension is usually disguised as a helpful tool that can be downloaded via the official Chrome Store. It requires minimal permissions, further cementing its perceived legitimacy to the user. According to SquareX, the extension actually does usually work as advertised, in order to further disguise the source of the attack from the user.
Meanwhile, secretly in the background, the Chrome extension connects itself to a managed Google Workspace profile that the attacker has set up in advance. With the user now unknowingly signed into a managed profile, the attacker sends the user to a legitimate Google support page which is injected with modified content through the Chrome extension, telling the user they need to sync their profile.
When the user agrees to the sync, they unwittingly send all their local browser data, such as saved passwords, browsing history, and autofill information, to the hacker's managed profile. The hacker can then sign into this managed profile on their own device and access all that sensitive information.
The attack up to this point already provides the hacker with enough material to commit fraud and other illicit activities. However, browser syncjacking provides the hacker with the capability to go even further.
Using the teleconferencing platform Zoom as an example, SquareX explains that using the malicious Chrome extension, the attacker can send the victim to an official yet modified Zoom webpage that urges the user to install an update. However, the Zoom download that's provided is actually an executable file that installs a Chrome browser enrollment token from the hacker's Google Workspace.
After this occurs, the hacker then has access to additional capabilities and can gain access to the user's Google Drive, clipboard, emails, and more.
The browser syncjacking attack doesn't stop there. The hacker can take one further step in order to not just take over the victim's Chrome profile and Chrome browser, but also their entire device.
Through that same illicit download, such as the previously used Zoom update installer example, the attacker can inject a "registry entry to message native apps" by weaponizing Chrome’s Native Messaging protocol. By doing this, the attacker basically sets up a connection "between the malicious extension and the local binary." Basically, it creates a flow of information between the hacker's Chrome extension and your computer. Using this, the hacker can send commands to your device.
What can the hacker do from here? Pretty much anything they want. The attacker will have full access to the user's computer files and settings. They can create backdoors into the system. They can steal data such as passwords, cryptocurrency wallets, cookies, and more. In addition, they can track the user by controlling their webcam, take screenshots, record audio, and monitor everything input into the device.
As you can see, browser syncjacking is nearly completely unrecognizable as an attack to most users. For now, the most important thing you can do to protect yourself from such a cyberattack is to be aware of what you download and only install trusted Chrome extensions.
Topics Cybersecurity Google
The Portable Workstation: Dell XPS 13 + 32 UltraSharp 4K Monitor
Writer Robert Kirkman addresses the major twist on 'The Walking Dead'
This Instagram post contains a major clue about the next series of 'The Crown'
Police charge 1000 who shared sex video without consent on Facebook
SpaceX will try to achieve 2 impressive feats on Monday
'Jeopardy!' contestant mixed up Jack White and Eminem
HTC U11 EYEs has a big battery and a dual front camera
Elisabeth Moss says 'Handmaid's Tale' Season 2 will be 'darker'
Lego free Valentine's Day Heart: How to get free Lego
Oh yus, 'Flight of the Conchords' is returning to TV
Boston Celtics vs. Dallas Mavericks 2025 livestream: Watch NBA online
Sad man cuts together 46
'Milkshake Duck' named 2017 word of the year by Macquarie Dictionary
'Milkshake Duck' named 2017 word of the year by Macquarie Dictionary
Brest vs. PSG 2025 livestream: Watch Champions League for free
Terrifying photos show plane after it skids off runway towards the sea
Amazing new video takes you on a 3D flight through the Orion Nebula
How Apple can make MacBooks great again
A hedgehog blown up 'like a beach ball' was popped in life
Hey Aziz Ansari defenders, saying 'no' is more complex than you think
Tech people: if you want other people to pump your gas so badly, move to New JerseyDamn, Apple's earnings are on fireWhy Elon Musk is a master of deceptionLatest 'Final Fantasy XV' update lets you dress up like an invincible badassRare Atari prototype sells for $3,000'Miles Morales: SpiderInspiring breastfeeding photoshoot turns the tables on rude commentsThe LG V30 will have a huge, 6Japan has discovered a way to make iceThe Reese's Peanut Butter Doughnut is about to hit Krispy KremeThe LG V30 will have a huge, 6Tech people: if you want other people to pump your gas so badly, move to New Jersey'Magic: The Gathering' session ends in stabbingWhich one of you purchased the $109 Arcade Fire fidget spinner?Reminisce about floppy disks and CRT monitors with these retro tech Lego modelsMajor recall after thousands of iPhone cases cause chemical burnsSnapchat wants to buy selfie drone company, report saysHow 12 guys used peanut butter to escape from jail...yThe 14 best Daenerys Targaryen quotes to burn the fuccbois from your lifeThe Reese's Peanut Butter Doughnut is about to hit Krispy Kreme Black Friday Fitbit deals: Save on Sense 2 and more Marcy Dermansky Revisits Van Gogh’s Flowers Kafka’s Budget Guide to Florence John Berger, 1926 A Letter from Zora Neale Hurston Hinge is allowing users to add zodiac signs to profiles Early Black Friday deal: Get up to 70% off at Lovehoney Uluç Ülgen’s Intimate Conversations with Total Strangers How to watch FSU vs. Pitt football without cable: kickoff time, streaming deals, and more The Dynamics of the City: Six Decades of Sy Kattelson’s Street Photos How to watch UCLA vs. Arizona football without cable: kickoff time, streaming deals, and more What does Grok, the name of xAI's chatbot, mean? Joe Biden used BeReal to encourage annual vaccines Staff Picks: Barbara Comyns, Russian Art, Derek Parfit How to watch Ole Miss vs. TAMU football without cable: kickoff time, streaming deals, and more Harold Pinter’s Gloriously Profane Poem “American Football” How to watch the OSU vs. Rutgers football without cable: kickoff time, streaming deals, and more iPhone 15 and Pixel 8 issues show why it doesn't always pay to be an early adopter Jonathan Lethem’s Collection of Vomiting Cats 'Call of Duty MW3' release date – and why its zombies are causing chaos
1.8887s , 8229.578125 kb
Copyright © 2025 Powered by 【Pretty Ex-Girlfriend】,Charm Information Network