Google Chrome WARNING over ‘huge spyware campaign’ that’s hoovering up your sensitive info

GOOGLE Chrome users are being warned of a massive spyware campaign that's out to snatch your private info.

Several extensions for the popular browser that are used by more than 420,000 users can steal your sensitive Facebook data, a security expert has warned.

2

The shady downloads can instantly hoover up your info, including your purchase history, as soon as Chrome starts up, warns Andrey Meshkov of .

They can also lift other data like posts, sponsored posts, tweets, YouTube videos and adverts you've clicked on.

Beyond Chrome, the spyware campaign targets two Android apps with more than 11million installs combined.

The trove of siphoned data is then sent to a third-party company identified as Unimania, which then reportedly sells it to others for cash.

2

If you use Chrome, you've likely come across the browser's Store home to themes and extensions (or plug-ins) that let you mod it out.

A quick, free download allows you to change Chrome's look or bolster its security settings.

But this Same store can sometimes fall prey to con artists and dodgy developers whose evil extensions hide out among the majority of clean plug-ins in a bid to fool users.

Meshkov pinpointed four "nasty Chome extensions":

• Video Downloader For Facebook (over 170,000 users)
• Album & Photo Manager For Facebook (over 92,000 users)
• PDF Merge - PDF Files Merger (over 125,000 users)
• Pixcam - Webcam Effects (over 31,000 users)

Together these plug-ins boast a total of 420,000 users.

The cyber-security researcher also discovered that Unimania had explicitly highlighted the data it collected in its privacy policy.

"In general, the Information we collect includes nonpersonally identifiable demographic and psychographic data as well as sponsored campaigns, advertisements or posts that target you directly or that have been shared with you,” read the company's guidelines, according to Meshkov.

Following the publication of his findings, Google reportedly removed the offending extensions from the Chrome store.

But, judging from past incidents involving other scam Chrome apps, this type of cat and mouse duel between Google and shady developers shows no sign of waning.

With that in mind, Meshkov issued the following tips on keeping your data safe online.

Most read in tech

RAISE THE ALARM

iPhone users angry at 'frustrating' glitch causing alarms to not go off

FOOD FOR THOUGHT

Samsung's new fridge trick can save EVERYONE money and it's easy to use

NOT 'APPY

Four digital detox tricks to stop 'doom scrolling' on social media

HACKER ALERT

Remote-controlled sex toys could be 'weaponised' against users in hack attacks

He recommends users read the privacy policy for Chrome plug-ins as "everything discovered in this case was mentioned" in those guidelines.

And "never ever install anything made by a developer you don't trust".

"Do your homework, find out who the developer is and decide for yourself if they are trustworthy," he added.

Last month, Cambridge Analyitca, the firm at the centre of the Facebook data-sharing scandal which has seen increased scrutiny over privacy rules, announced it will shut down.

And in light of the privacy storm, here's how to keep all your information safe on the social media website.

We've asked Google for comment on this story and will update it with any response.

We pay for your stories! Do you have a story for The Sun Online news team? Email us at [email protected] or call 0207 782 4368 . We pay for videos too. Click here to upload yours.