• lemmyng@lemmy.ca
    link
    fedilink
    English
    arrow-up
    94
    arrow-down
    1
    ·
    2 months ago

    “BuT mAnIfEsT v3 wIlL pRoTeCt UsErS fRoM mAlIcIoUs ExTeNsIoNs.”

  • cyberic@discuss.tchncs.de
    link
    fedilink
    English
    arrow-up
    28
    ·
    2 months ago

    A Chrome extension titled “Hide YouTube Shorts,” used by 100,000 people, was recently discovered to secretly collect users’ browser activity, raising serious concerns about user privacy on Google Chrome Web Store.

    • Ashelyn@lemmy.blahaj.zone
      link
      fedilink
      English
      arrow-up
      5
      ·
      2 months ago

      I’ve been able to nix so many intrusive web elements with the ublock picker tool, often without leaving a trace due to modern web design practices. The YouTube shorts shelf is one such case, and it’s shocking how well it worked!

      • mindbleach@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        1
        ·
        2 months ago

        Yeah, uBlock mostly just adds CSS rules as display:none, and Google still pretends that’s some kind of security nightmare.

        Because they’re an abusive monopoly that must be shattered.

  • Robust Mirror@aussie.zone
    link
    fedilink
    English
    arrow-up
    24
    arrow-down
    2
    ·
    2 months ago

    Probably an unpopular opinion, but I instead installed an extension to force shorts to play as normal videos. Some channels have shorts worth watching (imo), but this prevents endless scrolling through short after short, I have to intentionally choose to watch them by clicking on the specific thumbnail, every time.

    I find it a decent compromise.

  • pseudonym@monyet.cc
    link
    fedilink
    English
    arrow-up
    6
    ·
    2 months ago

    I like how the recommended remediation to this malicious extension is to install an extension for monitoring extensions.

    Serious question though: is “can connect to network” a permission on Chrome apps? What about Mozilla? It seems like this, more than anything, is what needs to be locked down for all apps (beyond just browser extensions). Like on my MacBook for example, I have to give apps explicit permission to access folders like Documents. But I’m pretty sure they can all access the Internet without restriction, right? That seems crazy to me.