Tuesday May 24, 2022
Check Point protects against malicious Chrome extensions
Recently, Check Point’s Infinity XDR, which will be officially available later this year, detected an evasive malicious Chrome extension which modifies the Chrome LNK files (the shortcuts to the Chrome browser application) and adds suspicious arguments. Chrome extensions are popular for their ability to expand the browser functionality. This malicious extension named Paon can potentially harvest credentials and collect user data, steal browser cookies, install adware, redirect searches to phishing or spam sites, and more. What the malware does: Uses two arguments to constantly overwrite all browser LNK files and force the extension to load without user interaction. Each time…