Toggle Main Menu Toggle Search

Open Access padlockePrints

Botnet in the browser: Understanding threats caused by malicious browser extensions

Lookup NU author(s): Raffaello Perrotta, Professor Feng Hao



This is the authors' accepted manuscript of an article that has been published in its final definitive form by IEEE, 2018.

For re-use rights please refer to the publisher's terms and conditions.


© 2003-2012 IEEE. Browser extension systems risk exposing APIs, which are too permissive and cohesive with the browser's internal structure, leaving a hole for malicious developers to exploit security critical functionality. We present a botnet framework based on malicious browser extensions and provide an exhaustive range of attacks that can be launched in this framework.

Publication metadata

Author(s): Perrotta R, Hao F

Publication type: Article

Publication status: Published

Journal: IEEE Security and Privacy

Year: 2018

Volume: 16

Issue: 4

Pages: 66-81

Online publication date: 06/08/2018

Acceptance date: 02/07/2018

Date deposited: 17/09/2018

ISSN (print): 1540-7993

ISSN (electronic): 1558-4046

Publisher: IEEE


DOI: 10.1109/MSP.2018.3111249


Altmetrics provided by Altmetric