Google Chrome’s New Feature to Scan for Malicious Content in Password-Protected Files
Google has redesigned Chrome to include malware detection in even password-protected executable files. Find out more about the development and why it matters for Chrome users.
- Google has announced new improvements to safeguards against malicious files being downloaded via the Chrome browser.
- The update includes an Enhanced Protection mode and scanning of password-protected encrypted archives.
Google has announced that it has added new security warnings to its Chrome browser to alert users when they download potentially malicious files. Previous warning messages have been replaced with more detailed ones to aid users in making informed security decisions. Consequently, Google has introduced two types of download warnings—Suspicious Files and Dangerous Files.
Google has also announced the launch of automated scans for users who have chosen Enhanced Protection mode in Safe Browsing. This mode allows even password-protected files to be checked for malicious content before being opened. For users using Standard Protection Mode, a prompt to enter the file’s password is triggered when downloading suspicious encrypted files.
The Safe Browsing feature allows files to be opened and deep scanned in a localized environment, protecting systems from malicious content. Files and passwords are deleted from Chrome shortly after such scans, and any data collected is said to be used to improve protections.
See More: Threat Actors Exploit Telegram Zero-Day Vulnerability Hiding Malware in Video Files
How the Feature Works
Password-protected archives, such as ZIP files, are commonly used to distribute malware. Cybercriminals use such files to circumvent conventional security measures, as encryption measures can prevent safeguards such as virus scanners from detecting malicious code. Google aims to block this loophole through this Chrome update.
When users download a password-protected archive, Chrome will now push them to enter the password for the encrypted files. This allows the browser to decrypt the files and scan them for potential threats before the file is accessed by the user in the following five steps:
- Download: Upon downloading a password-protected archive, Chrome recognizes the file type and initiates additional security checks.
- Password prompt: Users are prompted to enter the password for the archive.
- Decryption and scanning: Once the password is entered, Chrome decrypts the archive and scans the contents using its Safe Browsing algorithms.
- Threat detection: If any malicious files are detected, Chrome alerts the user and prevents the file from being opened.
- Safe access: If no threats are found, the user can access the files within the archive.
How You Can Use the Feature
For most users, the feature is enabled by default. However, if users wish to enable the feature manually, the following steps are needed:
- Open Chrome settings by clicking on the three-dot menu in the upper-right corner of Chrome, then select “Settings.”
- Scroll down the menu and click on “Privacy and Security.”
- Under the “Safe Browsing” option, ensure that “Standard protection” or “Enhanced protection” mode is selected. This is key as the new scanning feature is a part of these protection modes.
- You can verify or adjust settings by confirming that the “Protect you and your device from dangerous sites” option is turned on.
Importance of the Feature
Scanning password-protected archives adds additional safeguards to devices that help detect and block malware that could go undetected in other circumstances. By decrypting and scanning files before they are opened, Chrome stops malware from running on targeted devices, significantly minimizing the risk of infection. Furthermore, as the process is non-intrusive and seamless, the improvement does not disrupt the browsing experience.
Google Chrome’s new feature is a vital enhancement to its Safe Browsing abilities. It fixes a major hole in the application’s security and makes internet browsing secure. Consequently, users will likely feel more confident online against hidden malware threats.