Clean Master
WeTab
Infinity V+
Those are the extensions mentioned in the article, but they also say there were others, but decided not to name those because CERTAINLY NO ONE WOULD POSSIBLY WANT TO KNOW WHICH EXTENSIONS MIGHT BE AFFECTING THEM, RIGHT?! NO SIR, THATS NOT IMPORTANT INFORMATION AT ALL!
If only Google had prevented Chrome users from installing open source extensions from other platforms where Google doesn't check the code's changes and forced the ~~Chinese government~~ developer to upload a picture of their ID and pay a $5 fee, this could have been prevented!
Oh, huh, sucks for normie morons I guess.
This message was brought to you by entirely unprompted and uncompensated shilling for Waterfox
Either a browser is bad because it doesn't allow extensions.... Or it bad because it does and lets users install insecure stuff..... Or it's bad because it locks the extensions down so much you can't do anything useful with them.
Which type of bad are you shilling for?
Uh, genuinely no clue what you're talking about.
I just know that I can configure Waterfox to be both private/secure, and functional, fairly easily, and with most other browsers, that's quite difficult, largely due to them being fundamentally controlled by giant corporations who have being a datamonger as a very significant element of their overall business model, who very much want you to watch the ads.
And... because its based on / is a fork of Firefox... it was not vulnerable to or affected by this sleeper malware.
Even if that's not directly a result of some kind of software design/engineering paradigm type difference, and is just a kind of security through obscurity/non-popularity... thats still a very valid approach to using a computer system privately and securely.
Why can't Firefox be effected by this?
Does chrome not ask about plugins requesting new permissions or something?
Because ShadyPanda published a malicious extension for Edge and Chrome.
Not for Firefox based browsers.
... You... can't install an Edge or Chrome extension in a Firefox based browser.
You have to make a different version, designed for Firefox, sorta like a port of a video game; a DreamCast won't play a PlayStation disc, an N64 won't run a GameBoy cartridge.
It's not that it can't be done then, most likely no one has checked.
Buying out solo deved apps to host malware has been a thing for ages.
Yep, you could theoretically do a similar sleeper malware as extension for Firefox based browsers.
But that is not what this article is about.
No where in this article is anything about a Firefox based browser mentioned.
So, again, go back your original comment on my comment.
You tried to put a bunch of words in my mouth, now you're trying to argue hypotheticals based on conjecture.
Are you trying to make some kind of point?
Or just waste the time of anyone bothering to read this?
My point was basically that this can happen to you too, and if it couldn't, people would complain anyway.
No need to call people morons over it.
It's spreading. And evolving!
Thanks. Not sure why you're getting downvoted for linking to the source with the actual IOCs...
Same reason lemmy downvotes Sxan for using a thorn.
Lemmy: We support diversity! The weirder you are the better! We accept all people!
Also lemmy: Fuck your thorns.
People would also downvote if comments were being posted in latin or mandarin on an English language comminity: its unreadable to most of the participants and thereby negatively contributory to the discussion.
We downvote that dude for their obvious attention seeking behavior.
Understandable, since introducing foreign elements into a communication protocol makes it harder to parse.
Same for the gendern movement in german media btw. It doesn't male the language more inclusive but inclusivity more hated by mixing it with something inconvenient.
They are getting downvoted for making things harder for HUMANS to read. It's been proven over and over that it does nothing to stop AI.
An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!
Enjoy!
