After phishing attacks, Chrome extensions push adware to millions

[Chiefcrowe]

https://arstechnica.com/information...ks-chrome-extensions-push-adware-to-millions/

 

[Skunk-Works]

Crazy that Google is quoted as spending millions on security for Chrome but doesn't force two factor auth for extension authors.

 

[PeterRoss]

They will now. I doubt this is going to be left behind. I mean developers did that to themselves not being careful, but a huge kudos to the phishing social engineers. Not sure if that is a good thing, but phishers are getting scarier.