Cybersecurity researchers at Avast have recently reported a huge campaign comprised of dozens of malicious Chrome and Edge browser extensions along with more than three million installations in whole.
This campaign has collectively termed “CacheFlow” by Avast; it has 28 extensions available in official Google and Microsoft repositories exposed themselves in such a way so that they can easily download pictures, videos, or any other content from sites.
All these contents included sites like Facebook, Instagram, Vimeo, and Spotify. Moreover, the hackers have also accumulated user’s birth dates, email addresses, and some other device information and redirected the clicks and search results to ill-disposed sites.
The researchers affirmed that the cached flow was striking in such a way that the malicious extensions would attempt to hide all their command and control traffic in a covert channel by utilizing the Cache-Control HTTP header of their analytics requests.
The hackers used…