Adobe bundles Chrome plugin with Reader fixes

The plugin means Chrome users can easily convert web pages to PDF

Adobe Reader's latest security update appears to have an added extra a Google Chrome extension, which adds the Adobe Acrobat plugin to your Chrome browser.

Although it's nothing malicious it just enables any Chrome user to easily convert web pages into PDF the fact Adobe is doing this without informing users beforehand has been criticised by the security community.

One researcher, Troy Hunt, noticed strange goings on when he was installing the update, which was designed to fix a flaw that could potentially allow hackers to take control of the user's system.

Hunt told Wired: "[The plugin] auto-installed. I literally walked up to my PC and the prompt was already there."

The prompts he refers to include allowing Chrome to read and change all data on the websites a user visits, manage downloads and communicate with cooperating native applications.

The plugin isn't activated until these permissions receive the OK, however, it's important to note that if the requests for access are rejected, the Adobe Reader security fix will still be installed properly.

While this incident seems simply to be a case of Adobe trying to boost installations of the Reader plugin on Chrome, throwing up prompts that look like they're part of the security fix installation but in reality are malicious it a technique often used by hackers.

In a support document, Adobe said: "Information collected [by the plugin] will be used to develop new features and improve Adobe products," adding that no personally identifiable information is sent back to the company. It also said that, although the plugin does see what URLs the user visits in order to "allow the extension to convert HTML content to PDF", it doesn't send this information back to Adobe either.

Main image credit: Bigstock

Featured Resources

Navigating the new normal: A fast guide to remote working

A smooth transition will support operations for years to come

Download now

Leading the data race

The trends driving the future of data science

Download now

How to create 1:1 customer experiences at scale

Meet the technology capable of delivering the personalisation your customers crave

Download now

How to achieve daily SAP releases

Accelerate the pace of SAP change to support your digital strategy

Download now

Recommended

Best free malware removal tools 2020
Security

Best free malware removal tools 2020

21 Sep 2020
Windows Server flaw sparks emergency US gov warning
vulnerability

Windows Server flaw sparks emergency US gov warning

21 Sep 2020
'Largest ever' Magecart hack compromises 2,000 online stores
hacking

'Largest ever' Magecart hack compromises 2,000 online stores

15 Sep 2020
Infocyte integrates with Palo Alto Networks Cortex XSOAR
cyber security

Infocyte integrates with Palo Alto Networks Cortex XSOAR

19 Aug 2020

Most Popular

Google Pixel 4a review: A picture-perfect package
Google Android

Google Pixel 4a review: A picture-perfect package

18 Sep 2020
16 ways to speed up your laptop
Laptops

16 ways to speed up your laptop

16 Sep 2020
16 ways to speed up your laptop
Laptops

16 ways to speed up your laptop

16 Sep 2020