Google Chrome extensions, like all things on the internet, are inherently useful but a few bad apples here and there muddy the waters. Thankfully, Google is aware of the issue and has been working to make Chrome extensions safer. They no longer allow users to install extensions from outside the Chrome Web Store, which might seem tad overkill, but necessary. Additionally, they even removed extensions that were using cryptocurrency mining scripts.
Today, they are announcing even more changes. In their present state, extensions can automatically read and change data on any website you visit. The scope of such power is extremely useful but can be malicious at times. Google wants to gives users more control over these powers. Google is announcing the following changes to make extensions more secure:
Google says there are now over 180,000 extensions in the Chrome Web Store. For most desktop users, the Chrome Web Store is an integral part of their browsing experience. A seemingly innocuous extension hiding something malicious could slip by the untrained eye and it is essential that there are measures in place that prevent this.
News Source: XDA developers