Firefox and Chrome remove thousands of malicious browser extensions

Firefox Chrome - Featured image

Both Mozilla and Google are stepping efforts to clampdown on web browser extensions that steal data, execute malicious code and perform other harmful actions.  

For its part, Google disabled all extensions with a monetary component, including those that are paid-for, offer in-browser transactions and subscription services.

“Earlier this month the Chrome Web Store team detected a significant increase in the number of fraudulent transactions involving paid Chrome extensions that aim to exploit users,” the tech giant said in a statement. “Due to the scale of this abuse, we have temporarily disabled publishing paid items. This is a temporary measure meant to stem this influx as we look for long-term solutions to address the broader pattern of abuse.”

More than 16,000 Google Chrome extensions could potentially fall under this category. 

Meanwhile, Mozilla Firefox disabled only 197 extensions. All of them have a common denominator – remote code execution and data harvesting that violate Mozilla’s content security policy. This is the same reason why Avast and AVG extensions were temporarily removed last year.