And now I got hold of some malicious “configurations” used by Phoenix Invicta extensions. As expected, injecting their JavaScript code into all web pages is what they do. That’s some massive power which they use to … 🥁🥁🥁 … spy on people and inject their ads into Google searches, making these ads almost indistinguishable from search results. Oh, and if you look closely they also open up a massive vulnerability in all websites. But it’s not like they would care about that.
Now that is hopefully reason enough for Google to kick these extensions out.
=> More informations about this toot | View the thread | More toots from WPalant@infosec.exchange
text/geminiThis content has been proxied by September (ba2dc).