The Register: Google yet to take down ‘screenshot-grabbing’ Chrome VPN extension

Aug 21, 2025

—

Source URL: https://www.theregister.com/2025/08/21/freevpn_privacy_research/
Source: The Register
Title: Google yet to take down ‘screenshot-grabbing’ Chrome VPN extension

Feedly Summary: Researcher claims extension didn’t start out by exfiltrating info… while dev says its actions are ‘compliant’
Security boffins at Koi Security have warned of a shift in behavior of a popular Chrome VPN extension, FreeVPN.One, which recently appears to have begun snaffling screenshots of users’ page activity and transmitting them to a remote server without their knowledge – and Google has yet to take it down.…

AI Summary and Description: Yes

Summary: The text discusses a concerning change in the behavior of the FreeVPN.One Chrome VPN extension, which has reportedly begun stealing users’ screenshots without consent. This raises significant privacy and security issues, particularly as the extension remains available despite these allegations.

Detailed Description: The passage highlights an important issue in information and privacy security, specifically regarding the behavior of Chrome VPN extensions. Here are the key points of concern:

– **Behavior Shift**: The FreeVPN.One extension has allegedly transitioned from its initial purpose to now exfiltrating sensitive data—screenshots of users’ activities—without their consent.
– **Compliance Claims**: The developers of the extension have reportedly stated that their actions are ‘compliant,’ suggesting a potential misunderstanding or misrepresentation of user consent and privacy norms.
– **Lack of Action from Google**: Despite these serious allegations, there has been no action from Google to remove the extension from their platform, which raises questions about the effectiveness of their review and monitoring processes.

Implications for Security and Compliance Professionals:
– **User Data Privacy**: The incident underscores the necessity for regular audits and monitoring of third-party applications and extensions that have access to user data.
– **Vendor Risk Management**: Organizations need to be diligent when implementing third-party tools, particularly in ensuring that those tools comply with privacy regulations and do not compromise user data.
– **Regulatory Compliance**: The claims of ‘compliance’ by the devs stress the importance of understanding the compliance landscape and ensuring that tools align with relevant privacy laws and regulations.
– **Incident Response Protocols**: As anomalies in behavior are reported, having a robust incident response strategy to address potential data breaches quickly becomes essential.
– **User Awareness**: Educating users about the permissions required by extensions and what those permissions imply for their data security should be a priority.

This case serves as a reminder of the risks associated with potentially insecure software solutions and the critical nature of ongoing vigilance within the security landscape.

1 2 2025 5 a access Act actions age AI All and anomalies app Application applications Arch art as at ated audit Audits aware awareness AWS Behavior Bi bing breach breaches by C CERN Chrome CI CIA co Col compliance compliance landscape compliance professionals Consent core critical D data data breach Data breaches data privacy data security de developer developers e edge effective effectiveness end extensions for free g Gen GIS Go Google H high Highlight HR http HTTPS implications implications for security in incident incident response incident response protocols incident response strategy information io issue ite k Key knowledge l Lance land law led Li M man management mission Monitor monitoring N NGO no o of off on one ons organization organizations ory oS out party party tools per permissions platform point potential pre privacy privacy law privacy laws privacy regulation privacy regulations privacy security pro process processes professionals protocol protocols ps Q question QUIC R Raise rate RCE re red Regulation regulations regulatory regulatory compliance remote report representation research response response strategy review Risk risk management risks Ro RoT s screenshot search sec secure secure software secure software solutions security security and compliance security issues security landscape sensitive data server shift shot Sig SoC software software solutions solutions source specific SRE SSE SSO STAR start state stealing Strategy T ted text the third third-party third-party applications to tool tools Tor TP transition UI under US use user User Awareness user consent user data user data privacy Users V vendor vendor risk vendor risk management vigilance VPN Ware Wi x z