More threads by djbaxter


Jun 28, 2012
Reaction score

Millions of users affected by malicious Edge, Chrome browser extensions

by TanmayPatange,
Dec 19, 2020

According to Avast’s threat intelligence researchers, many third-party browser extensions for services like Facebook, Instagram, and Vimeo have been infected with a specific type of malware. The team could spot the said malware in more than 28 extensions for Google Chrome and Microsoft Edge.

Malware-ridden web browser extensions on the rise​

Avast also found that the malware functions by redirecting users’ traffic to malicious sites, including phishing sites that could potentially steal credentials from the user.

That the extensions are associated with popular platforms like Facebook and Instagram make them more capable of targeting vulnerable users. Most of these apps are designed to help users download videos from popular sites like Facebook and Video.

Because this is a popular category of extensions, Avast believes that no less than three million users have installed these malicious extensions on their browsers.

The team also adds that the malware program would use JavaScript codes or other backdoors to download severe malware and install them on the computer. Of course, the latter set of malware would harm the security and privacy of the device.

Because the extensions are made for browsers and not specific Operating Systems, they have a better chance of infecting more people. Users who reported about the malicious extensions had talked about their internet experience becoming manipulated.

Users were sent to strange URLs and phishing pages when they clicked on normal-looking links. The threat actors behind the malware are also known to collect the users’ info during this period. This data, further sold to tech support scammers and other threat actors, can affect a person’s overall digital life.

Avast believes that the threat actors are getting paid for each user they redirect to a malicious website.

Avast has also published a list of the malicious extensions, which you should uninstall immediately. The threat was found in November 2020 but believes that the scam should have been running for an extended period.


Avast Press | Third Party Browser Extensions for Instagram, Facebook, Vimeo and Others Infected with Malware

December 16th, 2020

List of Compromised Extensions​

Direct Message for Instagram
Direct Message for Instagram™
DM for Instagram
Invisible mode for Instagram Direct Message
Downloader for Instagram
Instagram Download Video & Image
App Phone for Instagram
App Phone for Instagram
Stories for Instagram
Universal Video Downloader
Universal Video Downloader
Video Downloader for FaceBook™
Video Downloader for FaceBook™
Vimeo™ Video Downloader
Vimeo™ Video Downloader
Volume Controller
Zoomer for Instagram and FaceBook
VK UnBlock. Works fast.
Odnoklassniki UnBlock. Works quickly.
Upload photo to Instagram™
Spotify Music Downloader
Stories for Instagram
Upload photo to Instagram™
Pretty Kitty, The Cat Pet
Video Downloader for YouTube
SoundCloud Music Downloader
The New York Times News
Instagram App with Direct Message DM


Updated: Most or all of these have now been removed for downloading. Live links removed to keep our link checker bot happy. :)

Login / Register

Already a member?   LOG IN
Not a member yet?   REGISTER

LocalU Event

LocalU - Level Up Your Content Marketing Game with AI

  Promoted Posts

New advertising option: A review of your product or service posted by a Sterling Sky employee. This will also be shared on the Sterling Sky & LSF Twitter accounts, our Facebook group, LinkedIn, and both newsletters. More...
Top Bottom