Security Alert: Chrome Extensions with Hidden Tracking Code Affect 6 Million Users

TL;DR

A recent discovery revealed that 57 Chrome extensions, collectively used by 6 million individuals, contain hidden tracking code. These extensions can monitor browsing behavior, access cookies, and potentially execute remote scripts, posing significant security and privacy risks.

Hidden Tracking in Popular Chrome Extensions Puts Millions at Risk

A recent investigation has uncovered a alarming security concern: 57 Chrome extensions, with a combined user base of 6 million, have been found to contain hidden tracking code. These extensions, designed to provide various functionalities, are capable of performing highly risky actions such as:

• Monitoring Browsing Behavior: Tracking users’ online activities without their explicit consent.
• Accessing Cookies: Gaining access to cookies for different domains, potentially leading to unauthorized data access.
• Executing Remote Scripts: The ability to run scripts from remote servers, which could be used for malicious purposes.

The discovery highlights the importance of vigilance when installing browser extensions. Users are advised to review the permissions requested by extensions and consider using alternatives from trusted sources.

For more details, visit the full article: BleepingComputer Report¹

Conclusion

The revelation of hidden tracking code in widely-used Chrome extensions underscores the need for enhanced scrutiny and regulation of browser add-ons. Users should be proactive in managing their extensions and developers must prioritize transparency and security in their offerings.

Additional Resources

For further insights, check:

• Google’s Extension Security Guidelines
• Mozilla’s Add-on Policies

References

1. BleepingComputer (2025). “Chrome extensions with 6 million installs have hidden tracking code”. BleepingComputer. Retrieved 2025-04-17. ↩︎