23 Privacy Breaching Firefox Add-Ons Removed by Mozilla

  • A number of Firefox add-ons were caught sending user history data to private servers, and are now removed by Mozilla.
  • All of the reported add-ons were audited individually by Mozilla before they were banned for breaching user privacy and violating privacy policies in place.
  • The add-ons have been disabled for users who installed them, and they will no longer be able to collect user data.

Multiple widely used Firefox add-ons were reported to be snooping on user data and sending them to private servers recently. The biggest offender identified by Mozilla was ‘Web Security,’ which was downloaded by over 220,000 users from the official add-ons store. Web Security and 22 other add-ons were caught sending URLs from users’ Web histories to remote servers. Plugins Web Security, Browser Security, Browser Safety and Browser Privacy were guilty of sending the stolen data to the same server.

Mozilla Browser Engineer Rob Wu analyzed the violating apps and audited their code. The add-ons are currently disabled, and Firefox users will no longer have to worry about their browsing histories being sent to unknown organizations. Wu revealed that he used ‘Webextaware’ which is a Web extension and security analyzer made by Mozilla. He identified problematic add-ons and put them under an additional review.

The first category of privacy-breaching Mozilla Firefox add-ons sent URLs sent requests to remote servers to fetch users from every user’s browsing history. They used remote code execution functionality, and due to multiple flaws in how they were coded, 7 out of 10 banned extensions were unable to implement the data theft properly.

The second group of add-ons used code obfuscation, which allows the malicious data breaching code to be mixed with legitimate code spread across multiple locations and files. A number of misleading identifiers were found which made it obvious that the extensions were guilty of stealing user data. Mozilla released a list of add-ons that have been removed from Firefox.

What do you think about the banned Firefox add-ons? Let us know in the comments below. Also, to get instant tech updates, follow TechNadu’s Facebook page, and Twitter handle.


Recent Articles

Massive “V Shred” Data Breach Exposes More Than 99,000 Customers

“V Shred” has left an unprotected database online, exposing the sensitive details of 99,000 clients. The data that has leaked includes names,...

TrickBot Malware Has Updated Itself With Anti-Analysis Features

TrickBot is now checking what resolution it’s running on and stops if it’s an unusually low setting. The notorious trojan is checking for...

Top Selfie Beautification Apps Available in India Right Now

The ax of the Indian government has cut even the popular selfie beautification image apps “YouCan Makeup,” “Selfie City,” and “Meitu,” in the context...

Top 5 Alternatives for the “DU Battery Saver” That Was Banned in India

Due to the recent ban of 59 Chinese apps imposed by the Indian government, the “DU Battery Saver” has been blocked in the country....

These Are the Best Alternatives to “Mobile Legends” in India

The wave of Chinese app bans in India has swept “Mobile Legends,” too, and MOBA (multiplayer online battle arena) lovers are now looking for...