Next Step to User Safety: Google’s Extension Sets Auto-Removal of Malicious Extensions

Google recently revealed its plans for an upcoming version of the Chrome web browser. They’re introducing a fresh feature to let users know when a browser extension they’ve installed has been removed from the Chrome Web Store. 

This feature, set to debut alongside Chrome 117, will send alerts when an add-on is unpublished by a developer, taken down for violating store policies, or marked as malware.

Attention, #blockchain community!
Centralized entities such as governments and IT giants like #Google have already begun preparing against #QuantumComputer attacks. It's time to wake up and take action.

The QAN private blockchain uses the NIST-recommended primary algorithm🧵 pic.twitter.com/xlHlQXxGKA

— QANplatform (@QANplatform) August 14, 2023

Details about the checks

These extensions will be highlighted under a “Safety Check” section within the browser’s “Privacy and Security” settings. If you click on “Review,” you’ll be directed to their extensions list and given the option to either remove the extension or dismiss the warning to keep it installed.

As before, any extensions flagged as malware will automatically be disabled. Google is also making some other security-related changes. 

They’re testing a feature in Chrome 115 where all URL navigations to “https://” sites will automatically be upgraded to HTTPS, even if the link explicitly has “https://”. This feature should be rolled out soon.

What’s the next move?

Another step is that Google plans to warn users in mid-September 2023 when they try to download risky files on an unsecured connection. The company explains that downloaded files can potentially carry malicious code, bypassing Chrome’s protections. 

Great summary of everything the team has been working on lately! https://t.co/OkK4FQHAhn

— Oliver Dunk (@oliverdunk_) July 13, 2023

“The browser won’t display warnings when downloading safer file types like images, audio, or video, unless you have enabled HTTPS-First Mode in the security settings.”

• Regarding HTTPS-First Mode, Google wants to enable it by default in Incognito Mode for safer browsing. 
• Those who rarely use HTTP will also have this setting automatically turned on. To enable HTTPS-First Mode, select “Always use secure connections” in Chrome’s security settings (chrome://settings/security).

Google’s updates include plans to introduce support for quantum-resistant encryption algorithms in Chrome, starting with version 116.

A way forward

Looking ahead, the future of online security appears promising as tech giants like Google continue to prioritize user safety in their browser developments. The forthcoming features in Chrome, such as alerting users about removed extensions, upgrading HTTP links to HTTPS, and warning against risky downloads, signify a significant stride toward a more secure online experience. These enhancements underscore the industry’s commitment to staying one step ahead of cyber threats.

Staying secure on the internet remains a shared responsibility. As the digital world continues to evolve, it’s reassuring that efforts are being made to empower everyday internet users and provide them with the tools they need to be secure.