Security News > 2022 > June > Google Chrome extensions can be fingerprinted to track you online

A researcher has discovered how to use your installed Google Chrome extensions to generate a fingerprint of your device that can be used to track you online.
Yesterday, web developer 'z0ccc' shared a new fingerprinting method called 'Extension Fingerprints' that can generate a tracking hash based on a browser's installed Google Chrome extensions.
"Web accessible resources": [ ],. z0ccc discovered that you could use these web-accessible resources to check for installed extensions and generate a fingerprint of a visitor's browser based on the combination of found extensions.
While those with no extensions installed will have the same fingerprint and be less useful for tracking, those with many extensions will have a less common fingerprint that can be used to track them around the web.
To illustrate this fingerprinting method, z0ccc created an Extension Fingerprints website that will check a visitor's browser for the existence of web-accessible resources in 1,170 popular extensions available on the Google Chrome Web Store.
The Extensions Fingerprints site only works with Chromium browsers installing extensions from the Chrome Web Store.
News URL
Related news
- Google Chrome's AI-powered security feature rolls out to everyone (source)
- Google Chrome disables uBlock Origin for some in Manifest v3 rollout (source)
- Google Cuts Off uBlock Origin on Chrome as Firefox Stands Firm on Ad Blockers (source)
- Google fixes Chrome zero-day exploited in espionage campaign (source)
- Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783) (source)
- Zero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks (source)