Chrome sync is used to steal data

Attackers discovered they could use Chrome sync to send commands to infected

browsers and steal data from systems bypassing traditional security measures.

Sync in Chrome lets you keep copiesuser bookmarks, browser history, passwords and other settings in the Google cloud. Thanks to this, a person can use the browser equally conveniently from all devices.

A security researcher found thata malicious Chrome extension uses the synchronization function to communicate with the attacker's remote server. Hackers can also steal computer owner data.

The extension is an add-onsecurity from Forcepoint. It can be used as a leak channel from the corporate network to the attacker's Chrome browser, or as a way to control the infected browser from a distance.