NTISB Issues Warning Against 16 Browser Extensions Over Security Concerns

The National Telecom and Information Technology Security Board (NTISB) has issued a warning urging users to avoid 16 specific browser extensions due to potential threats of hacking and data breaches. These extensions, including some AI-based tools and VPNs, have recently gained popularity but pose significant cybersecurity risks.

Rising Threat from Browser Extensions

Browser extensions are tools installed in browsers like Google Chrome, Mozilla Firefox, and Microsoft Edge to enhance functionality. Unlike applications, extensions are not installed directly on devices but operate exclusively within browsers. They offer a range of features, such as note-taking, content downloading, password saving, ad blocking, and more.

However, many extensions, particularly those developed by third parties, require extensive permissions and access to sensitive data. Unlike paid applications, most browser extensions are free and lack robust security measures, making them vulnerable to exploitation. The NTISB warns that hackers are leveraging these extensions to steal personal data from social media, banking apps, and other websites.

NTISB Issues Warning Against 16 Browser Extensions Over Security Concerns

The advisory lists 16 browser extensions suspected to have been compromised. Among these are AI-based tools like ChatGPT and Gemini for Chrome, Bard AI Chat Extension, and GPT-4 Summary with OpenAI, as well as VPN services like VPNCity and Internxt VPN. Others include VidHelper Video Downloader, Bookmark Favicon Changer, Trackker Online Keylogger Tool, and AI Shop Buddy.

In a recent large-scale cyberattack, 35 browser extensions were targeted, including the 16 highlighted by the NTISB. This breach reportedly affected over 2.6 million users, leading to the theft of credentials and sensitive data. One extension, Cyberhaven, revealed that hackers gained access to its platform and uploaded a malicious version to the Chrome Web Store.

NTISB Recommendations

The NTISB strongly advises users to avoid the listed extensions and consider safer alternatives. It emphasizes the importance of installing extensions only from trusted sources and carefully reviewing the permissions they request. Additionally, users should regularly update installed extensions and promptly remove any that are unnecessary or suspicious.

See Also: How Generative AI is Changing Gaming Forever?

Risks of Free VPN Extensions

Two of the compromised extensions, VPNCity and Internxt VPN, are Virtual Private Networks (VPNs). VPNs have become increasingly popular in Pakistan, especially after February 17, 2024, when the social media platform X (formerly Twitter) was banned. Many users also rely on VPNs to bypass local internet disruptions.

However, cybersecurity experts warn that free VPNs, including browser-based extensions, pose significant risks. According to Simon Migliano, Head of Research at Top10VPN.com, free VPNs often leak IP addresses, DNS data, and user information. A 2024 study revealed that 88% of free VPNs and extensions failed to protect user data adequately. Many of these services rely on aggressive advertising or even embed malware.

“Running a trustworthy VPN service requires high operating costs, and it’s unlikely that a free VPN can maintain security without monetizing user data,” Migliano noted. He urged users to thoroughly research VPN providers and read multiple reviews before opting for a service.

Future Impact

The NTISB’s advisory highlights the growing threat of cyberattacks through browser extensions, underscoring the need for stricter regulations and user awareness. As technology evolves, the exploitation of seemingly legitimate tools could become more sophisticated. This serves as a wake-up call for both developers and users to prioritize cybersecurity.

By fostering awareness and adopting safer online practices, Pakistan can mitigate the risks associated with free extensions and tools, ensuring a more secure digital environment for all users.