Chrome was alleged to collect user data through malicious extensions. The firm recently removed 106 such extensions. These malicious extensions often disguised themselves as file converters, security scanners etc. They had code to bypass Chrome’s security scans. CERT-In advised users to uninstalls extensions with IDs in IOCs section, avoid installing extensions from unverified sources, switching to browsers’ developer’s mode to pick malicious extensions.