64

Browser extensions spy on you, even if its developers don't(vitonsky.net)

posted
by
Avatar
vitonsky@programming.dev
in
Avatar
foss@beehaw.org
4 comments
hidereport
Sort:
HotTopControversialNewOld
Avatar
Knusper@feddit.de
31 points

Mozilla prohibits connections to the internet, which aren’t necessary for the advertised functionality of an extension. So, these are rather “Chrome extensions” we’re talking about…

permalink
report
reply
Avatar
off_brand_@beehaw.org
11 points

I wonder how easy it would be to make an extension and fake it’s popularity? Make make it intentionally broken or something, so users immediately uninstall it too.

Sounds like an easy $10k, assuming the scammers would actually pay.

permalink
report
reply
Avatar
Cynber@lemmy.ca
3 points
*

Don’t extensions get reviewed by the various stores? I’d imagine an automated check could catch malicious integrations like that.

Maybe not right away, but once they catch wind of one shady extension they could just search the store for any other ones.

permalink
report
reply
Avatar
railsdev@programming.dev
3 points
*
Deleted by creator
permalink
report
parent
reply
Avatar
Cynber@lemmy.ca
3 points

I guess so, it would still be a problem. Once one extension is caught, it should be simpler to catch the rest.

It’s harder to quickly switch stuff up when you need to send the devs new code to put in

permalink
report
parent
reply

Free and Open Source Software

!foss@beehaw.org

Create post

If it’s free and open source and it’s also software, it can be discussed here. Subcommunity of Technology.

This community’s icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

Community stats

  • 795

    Monthly active users

  • 826

    Posts

  • 10K

    Comments

Community moderators