2 min read

Fake Microsoft Authenticator extension discovered in Chrome Store

Graham CLULEY

May 19, 2021

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Fake Microsoft Authenticator extension discovered in Chrome Store

I hope you’re being cautious if you’re installing extensions from the Chrome Web Store for your browser and care about your online security.

Because it’s reported that a bogus Chrome add-on purporting to be “Microsoft Authenticator” successfully managed to sneak its way in, and duped hundreds of people into downloading it.

As GHacks reports, an extension using both the name and branding of the legitimate Microsoft Authenticator app was discovered the browser add-on marketplace and managed to accrue a three out of five star rating.

According to the report, the fake Microsoft Authenticator extension was made available on April 23 this year after failing to be spotted by Google’s security systems and has reached 448 users.

Close inspection of the extension’s entry in the Chrome Web Store would, in an ideal world, have raised suspicions amongst potential downloaders: the add-on claimed to have been uploaded by “Extensions” rather than the “Microsoft Corporation” you would normally expect, and contact details pointed to Gmail rather than Microsoft’s domain.

Glancing at reviews of the extensions should also have raised alarm, as some of them clearly warned potential users of the danger, whereas other reviews (presumably fake) were brimming with suspicious praise.

Finally, Microsoft’s own webpages about its Authenticator product make clear that it is not available as a browser extension, but as an Android and iOS smartphone app.

If you were unfortunate enough to add the fake extension to your Chrome browser, GHacks described how you would be disappointed by its functionality:

The Microsoft Authenticator application cannot be used to authenticate Microsoft account sign-ins or any other sign-in for the matter. It displays a basic page with the option to “run Microsoft Authenticator”. A click on the button opens a Polish webpage that redirects to another webpage automatically asking for a sign-in or the creation of an account.

Clearly it was an extension not to be trusted, and it’s good to know that it has since been pulled from the Chrome Web Store by Google. But I wonder how many of those 400+ users might have unwittingly shared sensitive information in the meantime, not knowing that they had been duped.

It’s good that users are becoming more clued-up about the value additional levels of authentication can bring to their online security, but make sure not to be so keen to harden your defenses that you are fooled into installing fake software.

tags


Author



Right now

Top posts

What is medical identity theft and how to protect against it

What is medical identity theft and how to protect against it

July 27, 2022

2 min read
Curious about Omegle? Here’s how the roulette-style chat platform can threaten your online privacy and security

Curious about Omegle? Here’s how the roulette-style chat platform can threaten your online privacy and security

July 07, 2022

5 min read
Identifying and Dealing with Online Bullying Is Not Impossible - School Presentation Inside

Identifying and Dealing with Online Bullying Is Not Impossible - School Presentation Inside

June 28, 2022

2 min read
Let’s Celebrate World Social Media Day by Improving Your Privacy and Security Online

Let’s Celebrate World Social Media Day by Improving Your Privacy and Security Online

June 28, 2022

3 min read
Bitdefender Reveals the Top Cyber Threats Faced by Consumers in 2021

Bitdefender Reveals the Top Cyber Threats Faced by Consumers in 2021

June 22, 2022

1 min read
Scam alert: Cybercrooks use shady investment domain to scam keen investors out of money and data

Scam alert: Cybercrooks use shady investment domain to scam keen investors out of money and data

May 24, 2022

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Twilio Hack May Have Compromised 1,900 Signal Messenger Accounts Twilio Hack May Have Compromised 1,900 Signal Messenger Accounts
Vlad CONSTANTINESCU

August 16, 2022

2 min read
US State Department Offers $10 Million Bounty for Tips on Conti Ransomware Members US State Department Offers $10 Million Bounty for Tips on Conti Ransomware Members
Alina BÎZGĂ

August 12, 2022

2 min read
Years after claiming DogWalk wasn't a vulnerability, Microsoft confirms flaw is being exploited and issues patch Years after claiming DogWalk wasn't a vulnerability, Microsoft confirms flaw is being exploited and issues patch
Graham CLULEY

August 11, 2022

1 min read