Is "Microsoft Single Sign On" on Chrome Web Store Safe to Install?

[email protected] · chrome · v1.0.11

Use this extension to sign in to supported websites with Microsoft work or school accounts on Windows (10 and later versions) or macOS (11 and later versions). If you have a Microsoft Entra ID on your Windows or macOS computer, this extension enables improved Single Sign On for supported websites. You may still see additional authentication prompts like multi-factor verification depending on the access requirements for various applications, resources, and organizations. This extension is required for certain device-based conditional access policies for Microsoft Entra ID. https://learn.microsoft.com/en-us/entra/identity/conditional-access/concept-conditional-access-conditions#supported-browsers For macOS, this extension requires the device to be managed and requires the additional installation of Company Portal: https://learn.microsoft.com/en-us/mem/intune/user-help/enroll-your-device-in-intune-macos-cp Note: If you are experiencing difficulties with signing in or accessing resources, it could be related to your organization’s device policies. Please submit a support ticket directly to Microsoft through your tenant’s subscription. The developer email address for the extension is not an avenue for customer support.

Risk Assessment

Analyzed
46.76
out of 100
MEDIUM

13 security findings detected across all analyzers

Chrome extension requesting 1 permission

Severity Breakdown

0
Critical
3
High
10
Medium
0
Low
0
Info

Finding Categories

3
Malware Signatures
9
IoC Indicators

YARA Rules Matched

2 rules(3 hits)
postinstall network communication postinstall crypto operations

Requested Permissions

1 permission
nativeMessaging

Exchange messages with programs outside the browser

Dangerous

About This Extension

Use this extension to sign in to supported websites with Microsoft work or school accounts on Windows (10 and later versions) or macOS (11 and later versions). If you have a Microsoft Entra ID on your Windows or macOS computer, this extension enables improved Single Sign On for supported websites. You may still see additional authentication prompts like multi-factor verification depending on the access requirements for various applications, resources, and organizations. This extension is required for certain device-based conditional access policies for Microsoft Entra ID. https://learn.microsoft.com/en-us/entra/identity/conditional-access/concept-conditional-access-conditions#supported-browsers For macOS, this extension requires the device to be managed and requires the additional installation of Company Portal: https://learn.microsoft.com/en-us/mem/intune/user-help/enroll-your-device-in-intune-macos-cp Note: If you are experiencing difficulties with signing in or accessing resources, it could be related to your organization’s device policies. Please submit a support ticket directly to Microsoft through your tenant’s subscription. The developer email address for the extension is not an avenue for customer support.

Detailed Findings

4 total

YARA Rule Matches

2 rules

Indicators of Compromise

Network indicators, suspicious strings, and potential IoCs extracted during analysis

URLs
2
Domains
7
Strings
9

All Indicators · 9

Domain
detected Domain: www.office.com

XIOC detected Domain: www.office.com

extracted_from_files

URL
detected URL: https://clients2.google.com/service/update2/crx

XIOC detected URL: https://clients2.google.com/service/update2/crx

extracted_from_files

Domain
detected Domain: event.data

XIOC detected Domain: event.data

extracted_from_files

Domain
detected Domain: event.data.channel

XIOC detected Domain: event.data.channel

extracted_from_files

Domain
detected Domain: chrome.runtime.id

XIOC detected Domain: chrome.runtime.id

extracted_from_files

Domain
detected Domain: extelement.id

XIOC detected Domain: extelement.id

extracted_from_files

Domain
detected Domain: os.call

XIOC detected Domain: os.call

extracted_from_files

Domain
detected Domain: clients2.google.com

XIOC detected Domain: clients2.google.com

extracted_from_files

URL
detected URL: https://www.office.com'

XIOC detected URL: https://www.office.com'

extracted_from_files

Security Analysis Summary

Security Analysis Overview

Microsoft Single Sign On is a Chrome Web Store extension published by [email protected]. Version 1.0.11 has been analyzed by the Risky Plugins security platform, receiving a risk score of 46.76/100 (MEDIUM risk) based on 13 security findings.

Risk Assessment

This extension presents moderate security risk. Several findings were detected that may warrant attention. Users should carefully review the permissions and findings before installation.

Findings Breakdown

  • High: 3 finding(s)
  • Medium: 10 finding(s)

What Was Analyzed

The security assessment covers multiple analysis categories:

  • Malware Detection: YARA rule matching against 2,400+ malware signatures
  • Secret Detection: Scanning for exposed API keys, tokens, and credentials
  • Static Analysis: Code-level security analysis for common vulnerability patterns
  • Network Analysis: Detection of suspicious network communications and endpoints
  • Obfuscation Detection: Identification of code obfuscation techniques

Developer Information

Microsoft Single Sign On is published by [email protected] on the Chrome Web Store marketplace. The extension has approximately 36.0M users.

Recommendation

Exercise caution with this extension. Review the detailed findings and ensure the requested permissions align with the extension's stated functionality before installation.

Frequently Asked Questions

Similar Extensions

Related extensions from the same publisher or marketplace

KPN Password Manager

[email protected]

CRITICAL

MAGgie - An AI Assistant

[email protected]

CRITICAL 1K users

Aintivirus Privacy and Wallet

[email protected]

CRITICAL 46 users

BugZap — Visual Bug Reporter

[email protected]

CRITICAL

FormGenieAI

[email protected]

CRITICAL

OmniChat

[email protected]

CRITICAL 58 users