Friday, February 26, 2021
  • About Us
  • Contact Us
  • Deals & Coupons
  • Privacy Policy
  • Terms & Conditions
Cloud Host News
  • Home
  • Hosting
    NetApp Becomes Technology Partner of DHPA

    NetApp Becomes Technology Partner of DHPA

    Managed WordPress Hosting Provider DreamHost Partners with Lendio

    DreamHost, a Managed WordPress Hosting Provider Partners with Lendio

    The Events Calendar

    Liquid Web Acquires ‘The Events Calendar’ a Popular WordPress Plugin

    HostPapa acquires another Canadian web hosting company

    HostPapa acquires another Canadian web hosting company

    Web.com releases new lineup of Pro Services(Pro SEO and Pro Website)

    Web.com releases new lineup of Pro Services(Pro SEO and Pro Website)

    Loopia Picks EcoDataCenter From Sweden for Sustainable Data Center Services.

    Loopia Picks EcoDataCenter From Sweden for Sustainable Data Center Services.

    Trending Tags

    • Hosting
    • A2 Hosting
    • web hosting
    • Cloud Hosting
    • free hosting
    • DreamHost
  • Cloud
    Bitcoin Plummeted $8000 After Elon Musk's Concerns Over Rally

    Bitcoin Plummeted $8000 After Elon Musk’s Concerns Over Rally

    Red Hat's OpenShift Platform Released on IBM Power Virtual Servers

    Red Hat’s OpenShift Platform Released on IBM Power Virtual Servers

    Amazon Web Services (AWS) Expands into Adelaide, South Australia

    Amazon Web Services (AWS) Expands into Adelaide, South Australia

    Veeam Software Extends Google Cloud Partnership

    Veeam Backup for Google Cloud Platform: Veeam Software Extends Google Cloud Partnership

    Google Launches VM Manager, An Infrastructure Management Tools Suite

    Google Launches VM Manager, An Infrastructure Management Tools Suite

    SUSE Announced The Release of Longhorn 1.1

    SUSE Announced The Release of Longhorn 1.1

    Trending Tags

    • Cloud
    • Private Cloud Hosting
    • Google Cloud Platform
    • Cloud Hosting
    • Google Cloud
  • Network/Internet
    Brave Browser Becomes the First Browser to Integrate IPFS Protocol

    Brave Browser Becomes the First Browser to Integrate IPFS Protocol

    ICANN70 to be Held Online on 22-25 March

    ICANN70 to be Held Online on 22-25 March

    OneWeb Plans to Offer High-Speed Internet in India by Q2 2022

    OneWeb Plans to Offer High-Speed Internet in India by Q2 2022

    Cloudflare and Apple Team Up to Develop New Internet Protocol

    Cloudflare and Apple Team Up to Develop New Internet Protocol

    ZenFi Networks Extends Network Capabilities

    ZenFi Networks Extends Network Capabilities

    Spark and NNNCo agree to trans-Tasman IoT network sharing

    Spark and NNNCo agree to trans-Tasman IoT network sharing

    Trending Tags

    • network security
    • 5G Network
    • Network OS
    • 5G Network Solution
    • Dark Fiber Network
  • Security
    Subscribe to our newsletter for the latest security news right from the security and research industries.

    Microsoft Announced SolarWinds Hackers Downloaded Some Azure, Exchange Source Code

    Microsoft Azure and Canonical Ubuntu Linux Have a User Privacy Issue

    Microsoft Azure and Canonical Ubuntu Linux Have a User Privacy Issue

    Chrome Sync Feature Exploited

    Hackers May Use Malicious Chrome Sync Feature to Steal Your Data

    Google Fixes Zero-day Vulnerability in Chrome 88.0.4324.150

    Google Fixes Zero-day Vulnerability in Chrome 88.0.4324.150

    RiskIQ Releases a Tool That Can Create Phishing Pages In Real-Time

    RiskIQ Releases a Tool That Can Create Phishing Pages In Real-Time

    Microsoft Releases EDR Capabilities for Linux Server

    Microsoft Releases EDR Capabilities for Linux Server

    Trending Tags

    • cybersecurity
    • Cloud Security
    • network security
    • WordPress Security
    • Secure Colocation Facility
  • Linux
    Ubuntu 20.04.2 LTS Re-Released

    Ubuntu 20.04.2 LTS Re-Released Due to OEM Install Bug

    Linux Kernel 5.11

    Linus Torvalds Declares First Linux Kernel 5.11 Release Candidate (RC)

    Major Linux Kernel Update Released to Fix 14 Vulnerabilities

    Major Linux Kernel Update Released to Fix 14 Vulnerabilities

    Linux Kernel 5.8

    Linux Kernel 5.8 Reaches EOL, Users Advised to Upgrade to Linux 5.9 Series

    Oracle Linux 7.9

    Oracle Linux 7.9 Update: Oracle Releases Oracle Linux 7.9

    Red Hat Enterprise Linux 8.3 beta now available

    Red Hat Enterprise Linux 8.3 beta now available

    Trending Tags

    • Linux Kernel
    • Linux Torvalds
    • Oracle Linux latest news
    • Oracle Linux latest update
  • More
    • Big Data
    • Blockchain
    • Games
    • Hardware
    • Software
    • Windows
    • Press Release
No Result
View All Result
Cloud Host News
  • Home
  • Hosting
    NetApp Becomes Technology Partner of DHPA

    NetApp Becomes Technology Partner of DHPA

    Managed WordPress Hosting Provider DreamHost Partners with Lendio

    DreamHost, a Managed WordPress Hosting Provider Partners with Lendio

    The Events Calendar

    Liquid Web Acquires ‘The Events Calendar’ a Popular WordPress Plugin

    HostPapa acquires another Canadian web hosting company

    HostPapa acquires another Canadian web hosting company

    Web.com releases new lineup of Pro Services(Pro SEO and Pro Website)

    Web.com releases new lineup of Pro Services(Pro SEO and Pro Website)

    Loopia Picks EcoDataCenter From Sweden for Sustainable Data Center Services.

    Loopia Picks EcoDataCenter From Sweden for Sustainable Data Center Services.

    Trending Tags

    • Hosting
    • A2 Hosting
    • web hosting
    • Cloud Hosting
    • free hosting
    • DreamHost
  • Cloud
    Bitcoin Plummeted $8000 After Elon Musk's Concerns Over Rally

    Bitcoin Plummeted $8000 After Elon Musk’s Concerns Over Rally

    Red Hat's OpenShift Platform Released on IBM Power Virtual Servers

    Red Hat’s OpenShift Platform Released on IBM Power Virtual Servers

    Amazon Web Services (AWS) Expands into Adelaide, South Australia

    Amazon Web Services (AWS) Expands into Adelaide, South Australia

    Veeam Software Extends Google Cloud Partnership

    Veeam Backup for Google Cloud Platform: Veeam Software Extends Google Cloud Partnership

    Google Launches VM Manager, An Infrastructure Management Tools Suite

    Google Launches VM Manager, An Infrastructure Management Tools Suite

    SUSE Announced The Release of Longhorn 1.1

    SUSE Announced The Release of Longhorn 1.1

    Trending Tags

    • Cloud
    • Private Cloud Hosting
    • Google Cloud Platform
    • Cloud Hosting
    • Google Cloud
  • Network/Internet
    Brave Browser Becomes the First Browser to Integrate IPFS Protocol

    Brave Browser Becomes the First Browser to Integrate IPFS Protocol

    ICANN70 to be Held Online on 22-25 March

    ICANN70 to be Held Online on 22-25 March

    OneWeb Plans to Offer High-Speed Internet in India by Q2 2022

    OneWeb Plans to Offer High-Speed Internet in India by Q2 2022

    Cloudflare and Apple Team Up to Develop New Internet Protocol

    Cloudflare and Apple Team Up to Develop New Internet Protocol

    ZenFi Networks Extends Network Capabilities

    ZenFi Networks Extends Network Capabilities

    Spark and NNNCo agree to trans-Tasman IoT network sharing

    Spark and NNNCo agree to trans-Tasman IoT network sharing

    Trending Tags

    • network security
    • 5G Network
    • Network OS
    • 5G Network Solution
    • Dark Fiber Network
  • Security
    Subscribe to our newsletter for the latest security news right from the security and research industries.

    Microsoft Announced SolarWinds Hackers Downloaded Some Azure, Exchange Source Code

    Microsoft Azure and Canonical Ubuntu Linux Have a User Privacy Issue

    Microsoft Azure and Canonical Ubuntu Linux Have a User Privacy Issue

    Chrome Sync Feature Exploited

    Hackers May Use Malicious Chrome Sync Feature to Steal Your Data

    Google Fixes Zero-day Vulnerability in Chrome 88.0.4324.150

    Google Fixes Zero-day Vulnerability in Chrome 88.0.4324.150

    RiskIQ Releases a Tool That Can Create Phishing Pages In Real-Time

    RiskIQ Releases a Tool That Can Create Phishing Pages In Real-Time

    Microsoft Releases EDR Capabilities for Linux Server

    Microsoft Releases EDR Capabilities for Linux Server

    Trending Tags

    • cybersecurity
    • Cloud Security
    • network security
    • WordPress Security
    • Secure Colocation Facility
  • Linux
    Ubuntu 20.04.2 LTS Re-Released

    Ubuntu 20.04.2 LTS Re-Released Due to OEM Install Bug

    Linux Kernel 5.11

    Linus Torvalds Declares First Linux Kernel 5.11 Release Candidate (RC)

    Major Linux Kernel Update Released to Fix 14 Vulnerabilities

    Major Linux Kernel Update Released to Fix 14 Vulnerabilities

    Linux Kernel 5.8

    Linux Kernel 5.8 Reaches EOL, Users Advised to Upgrade to Linux 5.9 Series

    Oracle Linux 7.9

    Oracle Linux 7.9 Update: Oracle Releases Oracle Linux 7.9

    Red Hat Enterprise Linux 8.3 beta now available

    Red Hat Enterprise Linux 8.3 beta now available

    Trending Tags

    • Linux Kernel
    • Linux Torvalds
    • Oracle Linux latest news
    • Oracle Linux latest update
  • More
    • Big Data
    • Blockchain
    • Games
    • Hardware
    • Software
    • Windows
    • Press Release
No Result
View All Result
Cloud Host News
No Result
View All Result
Home Security

Hackers May Use Malicious Chrome Sync Feature to Steal Your Data

Sienna Rowley by Sienna Rowley
February 9, 2021
in Security
0 0
0
Chrome Sync Feature Exploited

A Croatian cybersecurity researcher Bojan Zdrnja identified a malicious Google Chrome extension that abuses the Chrome Sync feature and can let hackers steal the data from the compromised systems by bypassing the conventional firewalls and other network defenses.

Recently, Google fixed a zero-day vulnerability in Chrome 88.0.4324.150 -bug in V8 JavaScript engine.

For people who don’t use Chrome browser, let me tell you, Chrome Sync is a Chrome browser’s feature that saves the clones of the browser and extension settings, Chrome bookmarks, browsing history, and passwords, on Google’s cloud servers.

The feature is used to sync the above-mentioned details of a particular Chrome user across their multiple devices. Hence, the user will always has the access to his/her most current Chrome data wheresoever they go.

Chrome Sync Feature Was Lately Exploited

Bojan Zdrnja stated that during his investigation, the attackers obtained access to the targeted system. However, the information they wanted to steal was in an employee’s portal, they downloaded a Chrome extension on the user’s system and loaded it through the Chrome browser’s developer mode.

The extension which posed as a security add-on extension from security company Forcepoint consisted of a malicious code that exploited the Chrome sync feature to let the attackers take control of the infected browser.

As per Bojan Zdrnja’s statement, the end purpose of the extension was to utilize it in manipulating the data in an internal web application that the victim had access to. He further said in the report that while they also wanted to spread their access, they actually restricted activities on this workstation to those associated with web applications, which illustrates why they released just the malicious Chrome extension and not released any other binaries.

The Croatian researcher gave a strong suggestion that the companies should use Chrome’s enterprise features and group policy support as it offers better control to allow and block the extensions that can be installed in the Chrome browser. Eventually, it avoids users from installing rogue extensions similar to the( Forcepoint Endpoint for Windows), which he investigated and reviewed.

Are you looking for more security updates? Subscribe to our newsletter for the latest security news right from the security and research industries. 

Download Premium WordPress Themes Free
Download Nulled WordPress Themes
Download Nulled WordPress Themes
Free Download WordPress Themes
udemy course download free
download redmi firmware
Free Download WordPress Themes
udemy paid course free download

Oh hi, there 👋 It’s nice to meet you.

Sign up to receive daily news update in your inbox.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Tags: Bojan ZdrnjaChrome Sync Feature ExploitedcybersecurityForcepoint Endpoint for WindowsGoogle Chrome Sync FeatureHackers May Use Malicious Chrome Sync Feature to Steal Your DataMalicious Chrome Extension
ShareTweetShare
Previous Post

Google Fixes Zero-day Vulnerability in Chrome 88.0.4324.150

Next Post

Amazon Web Services (AWS) Expands into Adelaide, South Australia

Sienna Rowley

Sienna Rowley

Sienna is an editor at Cloud Host News. She is an internet enthusiast, always eager to explore the latest trend in the tech space. In her free time, she is a modest family woman who loves traveling.

Related Posts

Subscribe to our newsletter for the latest security news right from the security and research industries.
Security

Microsoft Announced SolarWinds Hackers Downloaded Some Azure, Exchange Source Code

February 19, 2021
Microsoft Azure and Canonical Ubuntu Linux Have a User Privacy Issue
Security

Microsoft Azure and Canonical Ubuntu Linux Have a User Privacy Issue

February 16, 2021
Google Fixes Zero-day Vulnerability in Chrome 88.0.4324.150
Security

Google Fixes Zero-day Vulnerability in Chrome 88.0.4324.150

February 5, 2021
RiskIQ Releases a Tool That Can Create Phishing Pages In Real-Time
Security

RiskIQ Releases a Tool That Can Create Phishing Pages In Real-Time

January 29, 2021
Microsoft Releases EDR Capabilities for Linux Server
Security

Microsoft Releases EDR Capabilities for Linux Server

January 13, 2021
SolarWinds Hackers Accessed Microsoft Source Code
Security

SolarWinds Hackers Accessed Microsoft Source Code

January 1, 2021
Atos Announced Accomplishment of SEC Consult Acquisition
Security

Atos Announced Accomplishment of SEC Consult Acquisition

December 23, 2020
Microsoft Released Fix For Windows 10 CHKDSK Bug Which Caused Boot Failures
Security

Microsoft Released Fix For Windows 10 CHKDSK Bug Which Caused Boot Failures

December 22, 2020
Microsoft Confirms Breach in SolarWinds Supply Chain Hack
Security

Microsoft Confirms Breach in SolarWinds Supply Chain Hack

December 18, 2020
Load More
Next Post
Amazon Web Services (AWS) Expands into Adelaide, South Australia

Amazon Web Services (AWS) Expands into Adelaide, South Australia

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

cheap linux hostingcheap linux hostingcheap linux hosting
ADVERTISEMENT

Follow Us

Trending News

Microsoft To Establish First Data Center Region in Indonesia

Microsoft To Establish First Data Center Region in Indonesia

February 25, 2021
Super Micro Computer Advancing on New Multi-Node GPU Solution

Super Micro Computer Advancing on New Multi-Node GPU Solution

February 24, 2021
Bitcoin Plummeted $8000 After Elon Musk's Concerns Over Rally

Bitcoin Plummeted $8000 After Elon Musk’s Concerns Over Rally

February 23, 2021
Red Hat's OpenShift Platform Released on IBM Power Virtual Servers

Red Hat’s OpenShift Platform Released on IBM Power Virtual Servers

February 23, 2021
Subscribe to our newsletter for the latest security news right from the security and research industries.

Microsoft Announced SolarWinds Hackers Downloaded Some Azure, Exchange Source Code

February 19, 2021
Cloud Host News

Find the best web hosting news, articles, reviews, tutorials, solution and latest videos related to cloud computing , hosting, security, Linux, domain & more.

Categories

  • Blockchain
  • Cloud
  • Data Centers
  • Games
  • Hardware
  • Hosting
  • Linux
  • Network/Internet
  • Press Release
  • Security
  • Software
  • Windows

Search

No Result
View All Result

Pages

  • About Us
  • Contact Us
  • Deals & Coupons
  • Home
  • Privacy Policy
  • Terms & Conditions

© 2020 Cloudhostnews - Technology News Updates Cloudhostnews. Privacy Policy & Terms & Conditions

No Result
View All Result
  • Home
  • Hosting
  • Cloud
  • Network/Internet
  • Security
  • Linux
  • More
    • Big Data
    • Blockchain
    • Games
    • Hardware
    • Software
    • Windows
    • Press Release

© 2020 Cloudhostnews - Technology News Updates Cloudhostnews. Privacy Policy & Terms & Conditions

Login to your account below

Forgotten Password? Sign Up

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In