Last month, the research team of the American cyber security company Duo Labs conducted an extensive investigation into the more than 120,000 extensions that can be found in the Chrome Web Store. The researchers did this with the help of a new web service that they developed: the CRXcavator. The service scanned and analysed all Chrome extensions and apps.
Duo Labs today also launches its own extension: the CRXcavator Gatherer Chrome extension. It is designed for business use and can be installed by system administrators on a user’s device. The extension then collects information about all other extensions on a device, as well as the associated security risks.
This enables organizations to know exactly which extensions are being used, who is using them and what risks they entail, according to the researchers at Duo Labs in a statement. CRXcavator Gatherer also offers the possibility for staff to ask permission to install a certain extension. This must be the case, because this kind of thing is one of the many safety risks that companies have to deal with.our launch article.