2 min read

First ever crypto-mining Chrome extension discovered

Graham CLULEY

September 19, 2017

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
First ever crypto-mining Chrome extension discovered

A Chrome browser extension, with over 140,000 users, is gobbling up the resources of users’ computers by secretly mining for virtual cash.

The SafeBrowse plugin claims to let you surf the web without the nuisance of wasting time, waiting for annoying advertising pop-ups to disappear so you can, for instance, get your hands on a free download.

What you may not realise, however, is how SafeBrowse’s authors are planning to make money out of your use of their ostensibly “free” tool. That’s because the browser extension automatically mines for digital cryptocurrencies as it runs in your background.

As Ghacks reports, if you have enabled SafeBrowse in your Chrome browser it will run continuously in the background, running crypto mining code from Coin Hive.

The typical user, however, may have no idea as what has occurring, and may not link their installation of the SafeBrowse extension with the fact that their computer’s central processor is now being kept busy making complex mathematical functions to generate income for the extension’s creator.

Ghacks reporter Martin Brinkmann believes this is the first ever example of a Chrome extension that engages in crypto-mining, but my guess is that it won’t be the last. Other developers will no doubt attempt to take advantage of the technique to make money out of the computers that their code is being run on.

Just this week, Pirate Bay got into hot water when it was discovered that it had added a JavaScript-based cryptocurrency miner to its website.

The question is this – are you happy for third-party code to mine for cryptocurrency on your computer without your permission?

My belief is that most people would prefer to know, and be required to give their explicit permission, rather than for a software engineer to assume they have free reign to do what they want. Especially when there can be an impact on system resources, such as the CPU.

Certainly, judging by the most recent reviews of SafeBrowse, many users appear to be in agreement with me, with some claiming that after installing the extension their CPU usage leapt up to 70%.

It’s clear to me that, just like the Android app store, Google could be doing a better job of policing its official Chrome Web Store. If it fails to get a handle on things, chances are that we will see many more coders exploit the unsuspecting browsers of internet surfers.

tags


Author



Right now

Top posts

Abode IoT Security Camera Vulnerabilities Would Let Attackers Insert Images, Bitdefender Finds

Abode IoT Security Camera Vulnerabilities Would Let Attackers Insert Images, Bitdefender Finds

December 21, 2021

2 min read
Online Shoppers Beware, Mobile Scams Are on the Rise

Online Shoppers Beware, Mobile Scams Are on the Rise

December 17, 2021

2 min read
The Holiday Guide to Tech Support: Fixing the Family Computer

The Holiday Guide to Tech Support: Fixing the Family Computer

November 24, 2021

2 min read
Bitdefender Celebrates 20 Years of Cybersecurity Leadership

Bitdefender Celebrates 20 Years of Cybersecurity Leadership

November 04, 2021

3 min read
Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

October 26, 2021

3 min read
What are drive-by download attacks and how do you prevent them?

What are drive-by download attacks and how do you prevent them?

October 25, 2021

2 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Unknown Person Zoom-Bombs Meeting in Italian Parliament and Blasts Anime Adult Content Unknown Person Zoom-Bombs Meeting in Italian Parliament and Blasts Anime Adult Content
Silviu STAHIE

January 21, 2022

1 min read
FBI Links Diavol Ransomware to Trickbot, Offers IOCs and Mitigations FBI Links Diavol Ransomware to Trickbot, Offers IOCs and Mitigations
Filip TRUȚĂ

January 21, 2022

2 min read
Data of 500,000 already vulnerable people stolen from Red Cross Data of 500,000 already vulnerable people stolen from Red Cross
Radu CRAHMALIUC

January 20, 2022

1 min read