Developers are exploiting loopholes in Google's Chrome Web Store to promote questionable browser extensions through deceptive search manipulation tactics, despite explicit rules against such practices.
The scheme takes advantage of Google Chrome's language translation feature, which allows extension descriptions to be translated into over 50 languages. Rather than using straightforward descriptions, some developers are hiding massive keyword lists in translations for less common languages to game search results.
When users search for popular extensions like Norton Password Manager, they may see unrelated or potentially harmful knockoffs appearing alongside legitimate offerings. This happens because developers stuff thousands of misleading keywords into descriptions for languages like Bengali or Estonian, which then influence search results across all languages.
One documented example is an extension called "Charm - Coupons, Promo Codes, & Discounts." While its English description appears legitimate, examining translations reveals hidden keyword spam listing competitor names like "RetailMeNot," "Fakespot," and even "PayPal" - despite having no connection to these brands.
Security researcher Wladimir Palant identified 920 Chrome extensions using these deceptive tactics, tracing them to several developer clusters including Kodice LLC, ZingFront Software, and others. The extensions often employ additional manipulation techniques like using competitors' names and creating multiple listings for identical products.
Despite Google's policies explicitly forbidding keyword spam and search result manipulation, enforcement appears lacking. When asked about the widespread abuse, Google acknowledged awareness of the research and stated they are "taking appropriate action."
The findings highlight growing concerns about the Chrome Web Store's ability to protect users from misleading extensions that could potentially compromise security or privacy. Until stricter oversight is implemented, users should carefully verify extension developers and be wary of search results that seem unrelated to their queries.