New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 750678 link

Starred by 1 user
Status: WontFix
Owner: ----
Closed: Aug 2017
Cc:
ackermanb@chromium.org
EstimatedDays: ----
NextAction: ----
OS: ----
Pri: ----
Type: Bug-Security



Sign in to add a comment

Security: Malicious extension cannot be removed

Reported by vinay22...@gmail.com, Jul 31 2017 


VERSION
Chrome Version: Version 59.0.3071.115 (Official Build) (64-bit)
Operating System: windows 10 home latest up dated
REPRODUCTION CASE




this bug is about a chrome extension,
name:Plugins Button 0.9
ID: bfkmdpfljdpopbemfaelnflapafbflgn


1).The black persons manage to install this on victims browser.
1.a).it is done by some advertisement phishing websites!.
1.b).after visiting which victims browser gets infected
2).This extension cannot be disabled or deleted.
3).It shows "This extension is managed and cannot be removed or disabled."
3.a).It wont get deleted even after the chrome is set to default state.
4).It continuously changes/manages home pages,search engines.
5).The extension might also track keyboard inputs and manage to steel data,
which may contain confidential things like banking password etc!
6).this is a serious issue,to which,google needs act up on immediately.
screen captures attached!
AUTHOR
NAME:SIDDESH M G
EMAIL:VINAY22422@GMAIL.COM
JOB:STUDENT OF COMPUTER SCIENCE AND ENGINEERING IN SIDDAGANGA INSTITUTE OF TECHNOLOGY,TUMKUR,NEAR BANGLORE,KARNATAKA,INDIA
572103


I believe,google encourages students like us,with their bounty.
thank you

your sincerely 
siddesh m g
bug1.JPG
380 KB View Download
bug 2.JPG
353 KB View Download
bug 3.JPG
183 KB View Download
bug 4 after re set.JPG
348 KB View Download
bug 5.JPG
387 KB View Download

Comment 1 by vakh@chromium.org, Jul 31 2017

Cc: ackermanb@chromium.org

Comment 2 by elawrence@chromium.org, Jul 31 2017

Summary: Security: Malicious extension cannot be removed (was: Security: extension)
Do you have any additional detail about where this extension was installed from, and how it was installed? 

The "This extension is managed and cannot be removed or disabled" text suggests that the extension wasn't installed through Chrome itself and was instead installed by full-trust malware.

Comment 3 by vakh@chromium.org, Jul 31 2017

Labels: Needs-Feedback

Comment 4 by elawrence@chromium.org, Aug 7 2017

Status: WontFix (was: Unconfirmed)
Closing due to lack of actionable feedback. The extension in question has been banned.
Project Member

Comment 5 by sheriffbot@chromium.org, Nov 14 2017

Labels: -Restrict-View-SecurityTeam allpublic
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Sign in to add a comment