Why You Should Delete Your Browser Extensions Right Now - Or Do This To Stay Safe

Elyse Betters Picaro / ZDNET

Follow ZDNET: Add america arsenic a preferred source connected Google.

ZDNET's cardinal takeaways

• Malicious browser extensions are a wide problem.
• Even vetted extensions tin beryllium dangerous.
• Here's what you should do to debar issues.

Koi Security investigated a azygous malicious hold utilized arsenic a colour picker and recovered it had infected 2.3 cardinal users connected Chrome and Edge. Cybernews reported successful 2024 that much than 350 cardinal group downloaded insecure browsers during a two-year period.

Those 2 facts unsocial should person you rethinking your stance connected browser extensions.

Back erstwhile I was moving pinch an IT-managed support company, each clip I ran into a machine that was moving slow aliases having issues, nan first point I would do was cheque if nan personification had installed browser extensions. Every time, nan first type of hold I would look for was those that promised to connection users nan champion deals connected various types of products. Those "coupon" extensions almost ever caused problems.

Also: 5 browser hold rules to unrecorded by to support your strategy safe successful 2025

Malicious browser extensions are a wide problem. This rumor is truthful retired of control, it's made maine rethink my usage of extensions to nan constituent that there's only a azygous hold I use: Grammarly (and moreover then, I'm considering switching from nan browser hold to a dedicated grammar checker utilized extracurricular of nan web browser).

The problem pinch browser extensions

The rumor pinch browser extensions should beryllium obvious: security. 

Security Daily Review reported this twelvemonth that much than 100 malicious Chrome extensions person been masquerading arsenic devices for AI, VPNs, and crypto. Field Effect recovered 33 malicious Chrome extensions that had been installed by much than 2.6 cardinal users. MSN posted an article stating that 245 browser extensions installed connected astir a cardinal devices were silently disabling cardinal information features successful browsers.

Those numbers proceed to turn and astir apt will not slow down immoderate clip soon.

Ultimately, nan problem boils down to security. That browser hold you installed could beryllium starring a double life, and nan hidden characteristic could beryllium logging keystrokes and sending them to a 3rd party. You could upwind up installing an hold pinch a hidden ransomware payload.

Also: Malicious extensions tin usage ChatGPT to bargain your individual information - here's how

Most extensions are installed from a dedicated marketplace for nan browser you use. One mightiness deliberation those extensions person been afloat vetted and safe, yet Bleeping Computer reported connected August 7, 2025, that yet different malicious campaign, called GreedyBear, was recovered successful 150 different extensions successful nan Mozilla add-on store.

Let maine inquire you this: Is that hold really worthy nan risk? 

You see, malicious campaigns tin beryllium tucked distant successful nan browser hold codification aliases moreover advertisement networks that service advertisements for nan extension. All it takes is for you to instal that hold and then, blamo, you're successful trouble.

Also: 5 awesome Chrome browser alternatives that put your privateness first

One large problem is that publishers of malicious extensions person go really bully astatine injecting codification into what looks for illustration guiltless browser apps. Or, moreover worse, they'll adhd third-party branding to their hold to make it look for illustration thing you would usually trust.

Consider this: If you do a batch of online shopping, those malicious browser extensions could log your in installments paper accusation and either usage aliases waste it.

How you tin debar malicious extensions

There are a fewer imaginable solutions here:

• Remove each browser extensions.
• Use only browser extensions from trusted sources.
• Check if a browser hold is safe.

Even if you usage an hold from a trusted source, you ne'er cognize if that hold is simply a rebranded malicious type aliases nan original. For that reason, you should ever spell to nan root tract and travel links from location to nan extension. At slightest that measurement you cognize you're not installing a malicious hold masquerading arsenic a trusted tool.

From my experience, it's ever amended to beryllium safe than sorry. Install 1 malicious hold and it's crippled over.

Another action is to only instal extensions from your browser's add-on shop that are verified. Verified extensions are mostly much trustworthy than those that aren't.

Again, amended safe than sorry.

If location are extensions that you must use, see taking advantage of this free instrumentality that lets you cognize if an hold is safe, earlier you instal it.

Another important portion of proposal is to ne'er instal an hold from extracurricular your browser's web store. This is 100% an absolute no-no. If you find an hold you want to usage and it's only disposable extracurricular nan browser add-on store, do not instal it. Period.

You tin do an online hunt for "malicious browser extensions" and find a frightening number of results that constituent to a integer pandemic that shows nary signs of slowing.

As overmuch arsenic I dislike to opportunity this, it's becoming harder and harder to spot browser extensions, and my champion proposal is to debar them completely. Yes, that mightiness mean you suffer a spot of convenience, but having to return a mates of other steps to do thing is worthy it to support your accusation and information safe. 

Even if you usage an OS that requires anti-malware/antivirus, those products aren't ever 100% reliable (especially astatine detecting malicious browser extensions). If those "anti" solutions were wholly trustworthy, we wouldn't beryllium having this conversation. I've moreover reached nan constituent wherever I won't instal extensions connected Linux because you conscionable ne'er know. The aforesaid point holds existent for MacOS.

Also: I recovered nan astir backstage and unafraid measurement to browse nan web -and it isn't incognito mode

I cognize this sounds a spot apocalyptic, but nan scenery of nan net has go a vulnerable place, filled pinch each sorts of traps and pitfalls, and there's nary logic to make nan occupation easier for malicious actors.

In nan end, you're simply safer if you region those browser extensions, move to a much secure browser, and browse wisely.