Recently, malware vendors have been purchasing popular Chrome extensions in order to distribute malicious code, adware and malware to every user of the extension.
According to ArsTechnica, the danger lies in Chrome's 'silent updates': Google designed Chrome specifically to be smooth and noninvasive, which means silently updating browsers and extensions without a hitch. But it also means that users aren't told when ownership of an extension is transferred to another company - so they're left in the dark if a malicious vendor suddenly decides to push dangerous updates.
