Millions of Chrome users’ data at stake due to AVG Web TuneUp free tool
AVG Web TuneUp is a free tool to protect PCs from malware and web trackers. Unfortunately, the tool that was meant to ward off malware itself contained a flaw that put the data of millions of Chrome users at stake.
As reported recently by BBC News, Google’s security team spotted that AVG Web TuneUp was overriding the safety features built into the Chrome browser. This issue was brought to notice by Google’s Tavis Ormandy to other members of his Project Zero team on December 15th.
What did AVG Web TuneUp do?
As per his observation, when a user installs AVG AntiVirus, AVG Web TuneUp is ‘forced’ installed. He also mentioned that around 9 million active Chrome users had this AVG Web TuneUp installed on their browsers.
Ormandy further mentions in his message,
On contacting the Amsterdam-based cybersecurity firm, he mentioned about the problems created by AVG Web TuneUp.
“Apologies for my harsh tone, but I’m really not thrilled about this trash being installed for Chrome users. My concern is that your security software is disabling web security for nine million Chrome users, apparently so that you can hijack search settings and the new tab page. I hope the severity of this issue is clear to you, fixing it should be your highest priority.”
It was revealed that AVG did try to resolve the issue related to AVG Web TuneUp. However, the attempt did not work.
What is the current status of AVG Web TuneUp
AVG confirmed the fact in a statement that the flaw related AVG Web TuneUp has been addressed. And now the vulnerability has been fixed. AVG further mentioned that the fixed version has been published and automatically updated for users.
However, an independent security expert said that although the flaw related to AVG Web TuneUp is now fixed, it shows that almost any software installed on a computer can introduce security vulnerabilities, even if that software is intended to improve security. This should certainly be taken as a warning by all, says BBC.
Ankit Gupta is a writer by profession and has more than 7 years of global writing experience on technology and other areas. He follows technological developments and likes to write about Windows & IT security. He has a deep liking for wild life and has written a book on Top Tiger Parks of India.