"Web Developer" Chrome Extension Infected with Adware
The "Web Developer" extension (ID bfbameneiokkgbdmiekhjnmfkcnldhhm) has started injecting ads into websites. It looks like Google has since removed it from the their listings, but unfortunately that doesn't help people who already have it installed[1].
You may want to check to see if you have it installed so you can remove it.
[1] Seriously, why doesn't Google at least notify users who have extensions with reported abuse installed?
11 comments
[ 3.0 ms ] story [ 34.8 ms ] threadThis has shaken my faith in browser extensions, and I (IMHO) an example of why we need iOS style sandboxing.
At least adding ads is visible to the user. I once noticed a screen capture extension I had was sending every URL I viewed to about 7 different tracking services behind the scenes...
It would take a reasonable amount of stupidity to manage to download untrusted code and run it in a context that has access to the extension APIs if all you wanted to do is inject ads onto webpages. But no amount of sandboxing is going to stop that, if you give the code the permissions it wants. That's why one should always evaluate both the trustworthiness and competence of the developer before granting them scary permissions.
I guess it can happen to anyone.
Any click to dom element or opening new tabs was popping up alerts/confirmations and/or attempting redirects.
Only reason I noticed it was web developer extension was weird console-logs that I had never seen coming from the extension.
Disabled and all the popups have disappeared.
How this could also be protected against similar phishing attacks would be an interesting problem to solve too.
https://twitter.com/chrispederick/status/892780120032681984