Somehow over 82,000 Google Chrome uses were mislead into thinking that were actually downloading a free copy of the popular latest game title from Rovio “Bad Piggies”, instead they actually had been spoofed into installing a malicious browser plug-in from the Chrome web store.
Barracuda Labs had reported earlier that after a quick search at the Google Chrome web store for "Bad Piggies", found several plug-ins masquerading as the Rovio title and once installed will display additional advertisements in some popular websites such as Yahoo.com for example.
“As of Oct. 2, 2012, there are about 82,593 Chrome users who installed these ads-injected plugins, and the total number is still climbing fast day by day, e.g., about 13K new installations from October 1 to October 2.”
Barracuda Labs says this isn't the first time a Chrome plug-in has requested extra permissions during installation. They had also reported that several “Facebook Timeline Remover” plugins also requested permission to access data on all websites,where they should only touch Facebook.com websites.The unwary users are at the mercy of the crafty plugin authors, and they can easily acquire all the web data from users surfing the Internet with Chrome, while stealing and selling user email addresses and online credit card information.
A suggestion to Chrome users; whenever trying to install a plugin inside the Chrome web store, consider the requested permissions with a critical eye toward the intent of the plugin. If the plugin requests any permission that does not seem reasonable, do not install it. If you have already installed, uninstall them immediately and change your passwords on other websites if possible.
For further details and information see the Barracuda Labs Internet Security Blog at