“Actors who are asking me to add some tracking code are mostly interested in reselling users’ data,” Anashkin said. “Actors who want to purchase it outright will stuff it with malware depending on their level of greed: hijacking affiliate links, tampering with search results, showing popups with shady websites, etc.”
Anashkin’s experience appears to be fairly common. Developers have discussed these solicitations in online forums and several have written blog posts about selling extensions or partnership offers.
It happened to the original uBlock and then the developer made uBlock Origin.
Absolute legend
Been spending the past little while reading the documented offers he gets.
I feel sick to my stomach.
Props to Oleg/hoverzoom for maintaining and updating this list for all to read. It’s my first time seeing any document of this kind really. Quiet chilling
What a depressing read, thank you!
You are welcome ☺️.
1/25/2021
We’d love to have redacted sponsor Hover Zoom+ in a similar manner to how we’re partnering with Dark Reader. See attached for how that partnership has come to life, but we’re honestly super flexible on implementation. We’d essentially love to pay you in exchange for helping us drive users to redacted.
So wtf does this mean? Is Dark Reader hammered as of 2021?
Jesus… it is time to seriously re-evaluate and pare back the extensions I use. Ugh.
I prefer to feel proud that there are still people who don’t fall for that and have values. And there always will be.
Wowza. That’s terrible. Thank goodness he hasn’t sold out; I love hoverzoom. If only my freaking work’s IT wouldn’t’ve banned extensions 🙃
Now you understand why your IT do that.
Those are some insultingly low offers, considering they want to malwareify (that’s totally a word now) hundreds of thousands of innocent people.
The trick is to sell it at a high price and immediately fork. Get paid and fuck off.
Then do it again and again and again. Infinite money glitch. Don’t worry about getting sued after a bit you’ll be rich enough to be immune from prosecution.
I get these offers almost daily for my Chrome extension, and have done for years. I couldn’t do it to the users, but they wouldn’t be making the offers if some people weren’t accepting.
They need to name and shame the people reaching out. They keep reacting them.
this is how you burn potential for future relationships
Seems like a good deal if it proactively convinces bad actors to stop from reaching out
Why would I want to have future relationships with shameless criminals?
In other words, “retirement fund” or wasn’t offered enough.
And now, please make the mental leap to overly-large Lemmy instances…
The day he sells out, I’m gonna be like, “you were the chosen one, Anashkin”
That’s why I’m avoiding any extension I know I really don’t need.
I’ve already burned myself once, when Nano Defender sold out and turned into a cookie-stealing malware. By the time it was one of few adblockers that were not being blocked by adblock killers. They’ve pushed a malware update through the Chrome web store, and started exploiting stolen cookies immediately.
It was a difficult day, where I had to explain to few of my exes that someone hacked their Instagram account due to an ad-blocker I’ve set up for them when we were dating few years ago.
The alternate universe where Anashkin doesn’t fall for the dark side
Anashkin skhiwhalker
Shkinwalker
We must ask him his opinions on sand
Do anyone knows if in Firefox is the same situation, or if they take some actions when a extension changes hands?
Looks like Firefox add-ons can be transferred with “[n]o interaction with Mozilla representatives”:
https://extensionworkshop.com/documentation/publish/add-on-ownership/
You do have to include your source code though if you use any kind of code obfuscation or minimization though:
https://extensionworkshop.com/documentation/publish/source-code-submission/
Yes, criminal activity is everywhere, problem is we haven’t yet forbid selling of users data.
And it’s very unlikely to happen, since our governments are very interested in spying us / buying our data.
The extension in question btw is Zoom+ for people that don’t want to click
