BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

Adblock Extension for YouTube Has Security Flaw

Popular YouTube Ad Blocker Hides Remote Code Execution Threat for Millions

  • A Chrome ad blocker with over 10 million installs can be configured to execute arbitrary JavaScript code remotely.
  • The extension, Adblock for YouTube, runs on all websites, not just YouTube, due to a flawed URL check.
  • The dormant capability requires only a server-side change, not an extension update or store review, to activate.
  • Researchers found ties to several other ad-blocking extensions previously removed from the Chrome Web Store for malware.

A popular Google Chrome extension used to block ads on YouTube poses a significant security risk, according to researchers from Island. Their analysis, detailed in a report, reveals the “Adblock for YouTube” extension has the hidden ability to execute arbitrary JavaScript code on any website a user visits. This widely installed tool, which carries a Featured badge on the Chrome Web Store, has more than 10 million users.

- Advertisement -

The extension’s description promises to block ads on YouTube and external sites. However, researchers Oleg Zaytsev and Shachar Gritzman discovered it contains “the architectural ingredients for arbitrary JavaScript execution.” They stated this capability could be activated by “a single server-side configuration change, without an extension update.” Consequently, a malicious actor could potentially read pages and steal sensitive data from personal or work accounts.

This risk is heightened because the extension runs on every website, not just YouTube.com. Its security check only looks for the “youtube.com” string anywhere in a URL, a flaw that is easily bypassed. For example, a visit to “bank.example.com/search?q=youtube.com” would trigger the extension. Meanwhile, the extension has historical connections to other ad blockers like Adblock for Chrome that were removed for malware.

The researchers emphasized that the dangerous script injection path has been present since February 2025. They noted, “The capability is dormant, not absent.” Island’s report stresses the combination of factors: high install counts, all-site access, and a remote-controlled injection path. The Hacker News has reached out to the developer for comment. This disclosure follows Palo Alto Networks Unit 42 finding 18 malicious browser extensions, as detailed in their threat intelligence report.

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

- Advertisement -

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

Hacker leaks Suno source code, confirms massive music scraping

A Hacker using the Shai-Hulud worm breached AI music platform Suno and leaked source...

Analysts, traders: Stripe-Advent offer undervalues PayPal

A reported $53.4 billion takeover offer from Stripe and Advent International at $60.50 per...

Robinhood Chain’s memecoin boom fizzles as tokens die and launchpads pause

Robinhood Chain launched on July 1 for real-world assets, but its first week was...

BitPay secures MiCA license, expands EU stablecoin payments

BitPay secured a license as a crypto-asset service provider from the Dutch Authority for...

n8n bug lets one token claim login into wrong user account

A critical identity-binding flaw in n8n's token exchange allowed account takeover when multiple external...

Must Read

What Is Bcrypt Password Hashing Function?

KEY TAKEAWAYSBcrypt is a password hashing function that transforms plain passwords into unique alphanumeric sequences.It is a one-way process, ensuring that passwords cannot be...
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading