I've developed a few browser extensions, and every week I receive numerous emails with "revenue offer". Some experienced developers know that offers like these will inject malware into the browsers of your users, but scammers who make these offers will not tell you about it. They offer "integrations" that don't look so suspicious. Imagine how many developers have accepted these offers. Then look at the number of extensions in your browser and think about how much risk there is that you have an extension with malware.
    • Coolcoder360@lemmy.worldEnglish
      4·
      2 years ago

      I love the offer of almost $15k to then say they can bargain if the users are active, like if it’s worth that much without active users then that’s definitely shady.

  • No Face@sh.itjust.worksEnglish
    5·
    2 years ago

    To add to the blog post, if you use user scripts, utilize your manager’s blacklist and learn REGEX.

    If needed, use Group Policy, Regedit or .plists on macOS to blacklist domains to prevent an extension from running on them. As an example, I use Shutup.css to block comments online, but on something like Lemmy, I want to see comments as that’s primarily how content is created and adding it to my extension domain blacklist prevents the extension from running on the website or any lemmy domains.

  • Franzia@lemmy.blahaj.zoneEnglish
    3·
    2 years ago

    I thought my ISP already had this data and is selling it. Should I go make sure all my extensions are 100% kosher?

  • Dariusmiles2123@sh.itjust.worksEnglish
    2·
    2 years ago

    It’s interesting to read as I never thought about the vulnerability these extensions are.

    I guess you should limit the number of extensions you have.