Online Security
🔍 Security Report Available View on Chrome Web StoreChrome will indicate if you already have this installed.
Blocks malicious scripts and downloads to keep your device safe from online threats, empowering you with a reliable endpoint protection layer that safeguards your web experience. Most benefit from this extension are individuals who frequently access public Wi-Fi networks or download files from unknown sources. Powering your web experience with a secure foundation.
Overview
Enhance your online safety with Online Security, this powerful solution ensures secure web browsing and enhances website safety, protecting you from malware and privacy threats.
Part of ReasonLabs' comprehensive cybersecurity suite, Online Security integrates seamlessly with RAV Endpoint Protection, our next-generation endpoint security product, to keep your personal data safe from any security threat.
Enjoy continuous, real-time protection, 24/7, with Online Security. It defends against malicious URLs, harmful extensions, suspicious downloads, intrusive cookies, trackers, unauthorized notifications, and annoying pop-ups.
With built-in antivirus protection, Online Security empowers you to navigate the internet with confidence, safeguarding both your digital identity and website safety.
Key Features:
Suspicious Site Blocking - Online Security protects you from malware, phishing, crypto-jackers, and scams targeting your browser and device. We're here to secure your online experience and personal data.
Identity Protection - Stay informed with comprehensive monitoring that includes dark web exposure and additional layers of protection for U.S. citizens. Our service detects leaked financial data, passwords, usernames, and other personal details, including compromised credit card information. Beyond dark web insights, it now features credit score monitoring, risk alerts, SSN monitoring, and identity theft insurance and restoration. You'll receive guidance for securing your information effectively, helping you stay proactive against threats.
Notifications center - With Online Security, notifications from potentially harmful websites are blocked. Furthermore, it grants you the authority to decide and take control, easily managing and dismissing unwanted notifications through the extension dashboard. This guarantees a seamless browsing experience, free from hassle.
Harmful Extensions protection - Online Security deactivates harmful extensions on your browser. Safeguard your browsing experience by preventing any extensions that might compromise your browser.
Torrent Inspection - When downloading torrent files you face risks such as exposure to malware and viruses, privacy concerns. Online Security allows you to scan and get notified in real time about malicious torrent files.
Cookies and Trackers blocking - Online Security detects and prevents harmful cookies and trackers that target you with aggressive and hostile advertising, ensuring your browsing experience remains private and safe.
File Download Scanning - Online Security seamlessly integrates with RAV Endpoint Protection, ensuring robust protection for your browser and personal computer. Every file you download undergoes scanning right as you initiate the download. This partnership includes real-time AV scans and antivirus software detection. This feature requires RAV EPP to be installed on the device - https://onelink.reasonlabs.com/get-rav-epp
Threat Scanner - Effortlessly schedule or initiate scans with just a simple touch.
Online Security provides also paid premium plans, unlocking premium capabilities to further enhance your protection online.
Free features:
Suspicious site alerts.
Identity protection, dark web scan for email breaches
Notifications center
Harmful extensions protection
Cookies and trackers blocking
Harmful files
Harmful torrent files - limited free scans
Premium features:
Automatic suspicious site blocking
Identity Protection – 24/7 dark web monitoring, multiple email monitoring, and comprehensive personal data monitoring including credit cards, SSN, national ID, driver’s license, passports, and phone numbers.
Credit score monitoring
Identity theft insurance and restoration
Risk alerts and SSN monitoring
Harmful torrents – Unlimited scans and safe downloading.
Get in Touch - If you have questions or need assistance, don't hesitate to contact us at support@reasonlabs.com.
By installing Online Security, you acknowledge and accept Online Security's:
Privacy Policy: https://reasonlabs.com/platform/products/online-security/legals/privacy-policy
Terms & Conditions: https://reasonlabs.com/platform/products/online-security/legals/terms
Tags
Privacy Practices
Security Analysis — Online Security
Permissions
Code Patterns Detected
External Connections
Package Contents 34 files · 3.9MB
What This Extension Does
The Online Security extension claims to enhance online safety by protecting against malware, phishing, and other threats. It integrates with RAV Endpoint Protection for real-time protection. This extension is suitable for users who want robust endpoint security.
Permissions Explained
- storageexpected: This permission allows the extension to store data locally on your device.
Technical: The extension can access local storage, which may include sensitive information such as login credentials or browsing history. This could be used for malicious purposes if compromised. - unlimitedStoragecheck this: This permission allows the extension to store an unlimited amount of data locally on your device.
Technical: The extension can access local storage without any limits, which may include sensitive information such as login credentials or browsing history. This could be used for malicious purposes if compromised. ⚠ 1 - managementexpected: This permission allows the extension to manage browser settings and extensions.
Technical: The extension can access management APIs, which may include sensitive information such as browsing history or login credentials. This could be used for malicious purposes if compromised. - tabsexpected: This permission allows the extension to access and manipulate browser tabs.
Technical: The extension can access tab information, which may include sensitive information such as browsing history or login credentials. This could be used for malicious purposes if compromised. - declarativeNetRequestexpected: This permission allows the extension to intercept and modify network requests.
Technical: The extension can access declarative net request APIs, which may include sensitive information such as browsing history or login credentials. This could be used for malicious purposes if compromised. - downloadsexpected: This permission allows the extension to access and manipulate downloads.
Technical: The extension can access download information, which may include sensitive information such as browsing history or login credentials. This could be used for malicious purposes if compromised. - downloads.shelfexpected: This permission allows the extension to access and manipulate downloads shelf.
Technical: The extension can access download shelf information, which may include sensitive information such as browsing history or login credentials. This could be used for malicious purposes if compromised. - downloads.openexpected: This permission allows the extension to open downloads in a new tab.
Technical: The extension can access download information, which may include sensitive information such as browsing history or login credentials. This could be used for malicious purposes if compromised. - notificationsexpected: This permission allows the extension to display notifications.
Technical: The extension can access notification APIs, which may include sensitive information such as browsing history or login credentials. This could be used for malicious purposes if compromised. - webNavigationexpected: This permission allows the extension to access and manipulate web navigation.
Technical: The extension can access web navigation information, which may include sensitive information such as browsing history or login credentials. This could be used for malicious purposes if compromised. - contextMenusexpected: This permission allows the extension to access and manipulate context menus.
Technical: The extension can access context menu information, which may include sensitive information such as browsing history or login credentials. This could be used for malicious purposes if compromised. - contentSettingsexpected: This permission allows the extension to access and manipulate content settings.
Technical: The extension can access content setting information, which may include sensitive information such as browsing history or login credentials. This could be used for malicious purposes if compromised. - browsingDataexpected: This permission allows the extension to access and manipulate browsing data.
Technical: The extension can access browsing data, which may include sensitive information such as login credentials or browsing history. This could be used for malicious purposes if compromised. - historyexpected: This permission allows the extension to access and manipulate browser history.
Technical: The extension can access browsing history, which may include sensitive information such as login credentials or browsing history. This could be used for malicious purposes if compromised. - nativeMessagingcheck this: This permission allows the extension to communicate with native applications.
Technical: The extension can access native messaging APIs, which may include sensitive information such as login credentials or browsing history. This could be used for malicious purposes if compromised. ⚠ 1 - <all_urls>check this: This permission allows the extension to access all URLs visited by the user.
Technical: The extension can access all URLs, which may include sensitive information such as login credentials or browsing history. This could be used for malicious purposes if compromised. ⚠ 1
Your Data
The Online Security extension accesses and stores data locally on your device, including browsing history, login credentials, and other sensitive information. It also sends this data to various domains, including api.onlinesecurityext.com, cdn.reasonlabs.com, and app-beta.getmozo.com.
Technical Details
- www.w3.org
- extgw.mozoapi.com
- github.com
- app.getmozo.com
- extgw.mozointernal.net
- feross.org
- app-beta.getmozo.com
- api.onlinesecurityext.com
- cdn.reasonlabs.com
- fb.me
- reactjs.org
- onlinesecurity-app.com
- https
- http
- cookies
- tokens
- keystrokes
- page content
Code Findings
The extension uses obfuscation techniques to make its code harder to read and understand.
Technical: The extension uses String.fromCharCode, charCodeAt, and unescape functions to obfuscate its code. This makes it difficult to analyze the code without deobfuscating it first.
💡 Obfuscation is commonly used in legitimate extensions to protect their intellectual property or prevent reverse engineering.
The extension uses postMessage for cross-origin communication, which may pose a security risk if not properly implemented.
Technical: The extension uses the postMessage function to communicate with other origins. This can be used to inject malicious scripts or steal sensitive information if compromised.
💡 Cross-origin communication is commonly used in legitimate extensions to interact with web pages or other extensions.
The extension sets up event listeners, which can be used to monitor user activity and interactions.
Technical: The extension sets up event listeners for various events such as page loads, clicks, and keyboard input. This can be used to track user behavior or inject malicious scripts if compromised.
💡 Event listeners are commonly used in legitimate extensions to interact with web pages or provide additional functionality.
The Online Security extension has some security concerns, including the use of obfuscation techniques and cross-origin communication. However, it also provides robust endpoint security features that may be beneficial for users who want to protect themselves from malware and other threats. We recommend exercising caution when installing this extension and monitoring its behavior closely.
