The Karma connection in Chrome Web Store
palant.info
A bunch of malicious extensions in Chrome Web Store have hidden affiliate fraud functionality, collect users’ browsing profiles, or both. These extensions appear to be connected to the Karma shopping assistant, developed by Karma Shopping Ltd. which is not a small company.

Somebody brought to my attention that the Hide YouTube Shorts extension for Chrome changed hands and turned malicious. I looked into it and could confirm that it contained two undisclosed components: one performing affiliate fraud and the other sending users’ every move to some Amazon cloud server. But that wasn’t all of it: I discovered eleven more extensions written by the same people. Some contained only the affiliate fraud component, some only the user tracking, some both. A few don’t appear to be malicious yet.

Affected extensions:

  • Visual Effects for Google Meet.
  • Karma | Online shopping, but better.
  • Hide YouTube Shorts.
  • M3U8 Downloader.
  • DarkPDF.
  • Sudoku On The Rocks.
  • Dynamics 365 Power Pane.
  • Israel everywhere.
  • Where is Cookie?
  • Quick Stickies.
  • Nucleus: A Pomodoro Timer and Website Blocker.
  • Hidden Airline Baggage Fees.
  • brewery@lemmy.worldEnglish
    1·
    2 days ago

    To be honest, there are so many articles about Chrome over the last several months, I don’t get why anybody is staying with them if they care about things like this. Am I being naive or unaware?