Google cans Chrome extensions that contained malware Good apps that got in with the wrong crowd ONLINE SHOPKEEPER Google has removed two apps from its Chrome Web Store after it was found that they were infected with malware.
The two apps Add To Feedly and Tweet This Page previously were reputable apps, but had been bought by unscrupulous parties who took advantage of the apps' good reputations. The scam is simple enough. A developer writes an app and spends a lot of time building up good reviews in the Chrome Web Store. The scammer then comes forward as an investor and offers to buy the app in order to take it to the next level. He then takes advantage of the auto-update facility in Chrome that is on by default by creating a malware infested version of the app and pushing it out to trusting users. Add To Feedly developer Amit Agerwal told readers on his blog, "The extension does offer an option to opt-out of advertising (you are opted-in by default) or you can disable them on your own by blocking the superfish.com and www.superfish.com domains in your hosts file but quietly sneaking ads doesn't sound like the most ethical way to monetize a product. It was probably a bad idea to sell the Chrome add-on and [I] am sorry if you were an existing user. Meanwhile, you can switch to the Feedly bookmarklet for the adware-free experience." The co-author of Honey, another popular add-on for Chrome that silently scans for valid coupon codes as you shop, told Reddit that he had been approached on multiple occasions by hackers wanting to do the same thing with his app. He said, "Usually [they] start with an email and progress to a call. I've spoken to a few on the phone and they sound just like normal people proposing a business deal. I'm sure they've justified what they do in their own mind so they don't sound shifty or unsure at all. Mental gymnastics is an amazing thing." The developer, who is known as gemusan, was keen to point out that Honey has not fallen prey to such a scam and continues to be a reputable app. Meanwhile this practice appears to be increasing, and we might find that this is just the tip of the iceberg. µ Tags: Google Categories: Security Skip to comments | Send to a friend | Follow us on Twitter | Related articles | Related jobs Add a comment Please enable JavaScript to view the <a href="http://disqus.com/?ref_noscript";>comments powered by Disqus.</a> Related articles Google's latest update builds Chrome OS straight into Windows 8 Google tweaks Gmail and Chrome with nifty features for easier use Google's Chrome web browser automatically blocks malicious threats Google’s Chrome apps break free of the web Microsoft outs Trojan hijacking Facebook accounts via Chrome and Firefox browser extensions Lookout warns of Notcompatible Android malware resurgence Latest jobs Project Manager – Financial Services - Cambridgeshire - £30k-£45k+Bens Web Developer - JavaScript, HTML, CSS, .NET JavaScript Developer - JavaScript, Node.js. more jobs >> Search Home | News | Reviews | INQdepth | Jobs | Download store | Newsletters the INQUIRER Go to desktop edition Contact us Terms and conditions Privacy policy © Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093 <div> <img alt="DCSIMG" id="DCSIMG" width="1" height="1" src="http://statse.webtrendslive.com/dcsib37fpvz5bdjnopthokc8d_2n6p/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=9.3.0&WT.dcssip=www.m.theinquirer.net"/> </div> http://m.theinquirer.net/inquirer/news/2323930/google-cans-chrome-extensions-that-contained-malware Sent from my iPhone -- You received this message because you are subscribed to the Google Groups "The Unique Geek" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/theuniquegeek. For more options, visit https://groups.google.com/groups/opt_out.
![http://statse.webtrendslive.com/dcsib37fpvz5bdjnopthokc8d_2n6p/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=9.3.0&WT.dcssip=www.m.theinquirer.net"/](http://statse.webtrendslive.com/dcsib37fpvz5bdjnopthokc8d_2n6p/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=9.3.0&WT.dcssip=www.m.theinquirer.net"/){kind=link}