상세 보기
- Lim, Chaejin;
- Jin, Beomjin;
- Kim, Hyoungshick
WEB OF SCIENCE
1SCOPUS
1초록
Web browser extensions have become essential tools in modern browsing, offering enhanced functionality and customization. However, these extensions also introduce a new attack surface, expanding the scope for security vulnerabilities in web browsers. This paper presents Stealth Extension Exfiltration (SEE) attacks, a novel threat that exploits the mismanagement of browser extension permissions. SEE attacks enable malicious extensions to bypass security measures and perform unauthorized actions, such as sending arbitrary HTTP requests, misusing the fetch API to access local files, and exfiltrating sensitive user data without explicit user permissions. Our large-scale analysis of 57,831 real-world browser extensions reveals vulnerabilities that could potentially affect up to 351 million users. We provide concrete examples of these attacks, demonstrating how they can stealthily evade detection while compromising user privacy and security. We reported these risks to the Google security team, who acknowledged the threat posed by SEE attacks. To address these vulnerabilities, we propose mitigation strategies that include enforcing a stricter separation between host permissions and content scripts, as well as implementing more granular access control for sensitive APIs. Copyright © 2025 held by the owner/author(s).
키워드
- 제목
- Stealth Extension Exfiltration (SEE) Attacks: Stealing User Data without Permissions via Browser Extensions
- 저자
- Lim, Chaejin; Jin, Beomjin; Kim, Hyoungshick
- 발행일
- 2025-05
- 유형
- Proceedings Paper
- 저널명
- Proceedings of the ACM Symposium on Applied Computing
- 페이지
- 1820 ~ 1828