Google has introduced some new enterprise options that may assist IT admins higher handle Chrome browser extensions, a preferred assault vector for cybercriminals. A curated Chrome Net Retailer expertise is launching right now for Enterprise workspaces that enables pre-approved extensions to be displayed on the touchdown web page, making them simpler for workers to seek out and set up.
Firms also can promote different trusted add-ons that they’ve vetted, create teams for particular extensions, and customise the Chrome Net Retailer UI with firm logos, imagery, and bulletins. The purpose is to stop staff from putting in probably dangerous browser extensions that pose a safety threat — as seen within the phishing marketing campaign reported in December that inserted malicious code into a number of Chrome extensions, together with the Cyberhaven data security add-on.
Extra controls might be added for IT admins later this 12 months, together with a brand new Chrome Enterprise Core setting that may allow extensions to be faraway from customers’ programs remotely, and mechanically block future downloads. One other function, coming “early this 12 months,” will let admins place customized messages on extension element pages to supply extra details about their compliance with workspace utilization insurance policies.
