September 19, 2019

Your Browser Extensions Are Stealing Your Data

“Web browsers have become the equivalent of safe deposit boxes, digital spaces where we stuff our personal information and expect it to be kept safe. While the websites that harbor sensitive data generally swear that this information is private and protected, a detailed report by cybersecurity researcher Sam Jadali, explained in depth by Dan Goodin at Ars Technica, found that eight browser extensions for Google Chrome and Firefox were harvesting personal data from millions of people, unbeknownst to both them and to the makers of those browsers.

The unauthorized data collected included sensitive information, ranging from medical records, credit card information, travel itineraries, online shopping history, file attachments, GPS locations and more. Jadali, who describes the data collection as “unprecedented,” explains that it reportedly affected over 4 million people and some Fortune 500 companies. The full list of the compromised extensions are available in Jadali’s full report, titled “Dataspii.”

“DataSpii is the catastrophic data leak that occurred when any one of eight browser extensions collects browsing activity data — including personally identifiable information (PII) and corporate information (CI) — from unwitting Chrome and Firefox users,” Jadali said in the report. “This data was then disseminated to members of an online service, where it may have been appropriated or exploited by any member.”

Unfortunately those who never downloaded any of the compromised extensions could still be at risk.”

Read more

JJ Editor's Picks

"Blackface. I’ve been writing about, and researching – and opposing – racism for more than thirty years. And make no mistake: blackface isn’t funny. It’s racist. Ask Megyn Kelly. A year ago, the former Fox News star was filming a segment about..."

"Sen. Elizabeth Warren’s “selfie line” may be a “political phenomenon,” according to CNN, but it’s also a misnomer, twice over: The photos that supporters end up with aren’t technically selfies—campaign aides snap them—and no one waits in a line..."

"In the archives of the Wildlife Conservation Society in New York, there is an old postcard from the city aquarium of a large sea turtle with four boys straddling its back. The turtle lies flattened upon a pathway in front of a fence. At the feet..."

"As we celebrated my granddaughter’s third birthday this summer, I made the following rough calculation: I’d trekked from my home in New Jersey to her Brooklyn apartment roughly 150 times to provide once-a-week day care, plus other times as needed."

"That seems to be the emerging bipartisan consensus. “On the evidence we have, the meritocratic ideal ends up being just as undemocratic as the old emphasis on inheritance and tradition,” writes New York Times columnist Ross Douthat. “Our..."

"It was the 2019 Pet Sematary that finally broke me. Was this really necessary? I seethed in a theater earlier this year, at a loss for why anyone would green light a self-serious update to a 30-year-old so-bad-it's-good movie. "Update," even, was.."

"Tuesday was election day in Israel. But no winner has yet been declared. As of this writing, it appears that the parties committed to supporting Benjamin Netanyahu for prime minister will not win a majority in Knesset. At the same time, the..."

"The last time Netflix asked me “Are you still watching?” I had to think really hard about it. Was I still watching? Or at least enough to make my $16-a-month payment worth it? The subscription economy can be a wonderful thing. We don’t have to..."