menu
techminis

A naukri.com initiative

google-web-stories
Home

>

Technology News

>

Browser ex...
source image

Ars Technica

21h

read

245

img
dot

Image Credit: Ars Technica

Browser extensions turn nearly 1 million browsers into website-scraping bots

  • Browser extensions installed on nearly 1 million devices have been found to override key security protections, turning browsers into website-scraping bots for a paid service.
  • These 245 extensions available for Chrome, Firefox, and Edge have amassed almost 909 million downloads, offering various functions while all incorporating the MellowTel-js JavaScript library, facilitating monetization.
  • The use of these extensions to scrape websites on behalf of paying customers, including advertisers, has raised concerns about privacy erosion, potential vulnerabilities to attacks like cross-site scripting, and the lack of end-user visibility into the websites being accessed.
  • Despite claims by MellowTel's founder regarding revenue sharing and data collection practices, security researcher John Tuckner highlighted the risks posed by these extensions, drawing parallels to similar malicious practices uncovered in the past.

Read Full Article

like

14 Likes

For uninterrupted reading, download the app