Google has introduced an improved mechanism for detecting malware in the Chrome browser, allowing users to send password-protected executable files for remote scanning. This enhancement requires users to provide Google with the passwords for such files. When the “Enhanced protection” option is enabled in the settings, Chrome will warn users when attempting to download files that may be unsafe due to suspicious characteristics or because they are on the list of known malware. Now, the browser will also offer users the option to send these files for remote scanning. If the file is a protected ZIP, 7Z, or RAR archive, users can also send the password for it.
Google highlighted that malware distributors are attempting to bypass browser protection mechanisms by placing malware in protected archives and providing passwords on the download pages for these files. The company assured users that both the files and their passwords are deleted after scanning. For those using the “Standard protection” setting, a similar process will be offered. They will be asked for permission to scan the file and its password, but the scanning will be performed locally and limited to checking the archive content metadata.
Two-Level Notification System
Google Chrome will implement a two-level notification system when users attempt to download potentially dangerous files. The browser will issue warnings about suspicious files for which the verification mechanism has issued a “guilty” verdict with a low level of confidence and an unknown risk of harm to the user. NIXsolutions adds that it will warn about dangerous files when the protection system has a high level of confidence that they can harm the user. Each level has its own icon, color, and text to help users distinguish between the levels of risk.
We’ll keep you updated on these changes and any further developments in Chrome’s security features.