Skip to content

Over two-thirds of artificial intelligence (AI)-powered extensions for the Google Chrome browser have a high-risk impact and could be “highly damaging” to user cybersecurity if breached, according to data from a new Incogni report.

The August report analyzed 70 AI Chrome extensions across seven different categories, including 10 writing extensions, which all fell into the high-risk category. 48 of 70 fell into the high-risk impact category if beached, yet 60% of the extensions were of low risk to face a security breach in the first place.

Source: Incognito data report “AI Chrome extensions: convenience vs privacy and security”

Darius Belejevas, head of Incogni, said that while these extensions offer “undeniable convenience,” users should have privacy and security safeguarding as their top priority.

“Understanding the data [users] share with extensions and their reliability in keeping it safe is crucial.”

The data found that 59% of the analyzed extensions collect user data, with 44% of these collecting “personally identifiable information” (PII). PII includes data such as the user’s name, address and identification number.

“By being cautious in choosing AI Chrome extensions and staying informed about their potential risks,” he said, “users can embrace the benefits of AI while safeguarding their personal information.”

Related: Zoom updates terms after backlash, won’t train AI without consent

The topic of privacy and user data collection and mishandling has become a major concern alongside the rapid rise of accessible AI applications. 

Back in June, Google changed its privacy policy to allow data scraping in order to train its AI systems — though it was very quickly met with a class-action lawsuit that claimed privacy and property rights were violated via the new changes.

Worldcoin, a decentralized digital identity verification protocol, has been among one of the recent major developments in the industry that has sparked worries over the management of user data. It has caused global regulators to open probes into the protocol’s operations. 

Meanwhile, on Aug. 7, the Indian government passed a bill through the lower house of parliament that would ease data compliance regulations for Big Tech companies, such as Google and Meta. 

Magazine: Deposit risk: What do crypto exchanges really do with your money?