Browser extensions spy on you, even if its developers don't (vitonsky.net)

submitted 10 months ago by vitonsky@programming.dev to c/foss@beehaw.org

4 comments fedilink hide all child comments

all 5 comments

sorted by: hot top controversial new old

[-] Knusper@feddit.de 31 points 10 months ago

Mozilla prohibits connections to the internet, which aren't necessary for the advertised functionality of an extension. So, these are rather "Chrome extensions" we're talking about...

[-] off_brand_@beehaw.org 11 points 10 months ago

I wonder how easy it would be to make an extension and fake it's popularity? Make make it intentionally broken or something, so users immediately uninstall it too.

Sounds like an easy $10k, assuming the scammers would actually pay.

[-] cynber@lemmy.ca 3 points 10 months ago* (last edited 10 months ago)

Don't extensions get reviewed by the various stores? I'd imagine an automated check could catch malicious integrations like that.

Maybe not right away, but once they catch wind of one shady extension they could just search the store for any other ones.

this post was submitted on 02 Sep 2023

64 points (100.0% liked)

Free and Open Source Software

17501 readers

56 users here now

If it's free and open source and it's also software, it can be discussed here. Subcommunity of Technology.

This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago

MODERATORS

Gaywallet@beehaw.org

alyaza@beehaw.org