Submission + - Is Google Chrome Browser backdoored by extensions?
blackest_k writes: I've been playing around with html5 and javascript and put up a couple of pages on my webhost while using chrome on osx i had a strange tab open saying chrome was out of date and offering to let me download an updated version "setup.exe"
the page was on an info site.
So i asked myself why did that open? and I made a curious discovery.
when i viewed my page source it was as i wrote it. A simple page to play a mp4 video with html5.
however when i chose to download the page as webpage complete i found an extra js file app.js also the page header had this line added.
script type="text/javascript" src="./End Credits_files/app.js">script type="text/javascript" src="http://www.youradexchange.com/ad/display.php?r=32796">link rel="stylesheet" type="text/css" href="chrome-extension://pkehgijcmpdhfbdbbnkijodmdjhbjlgp/skin/socialwidgets.css"> The extension part directed me to privacy badger. uninstalling the privacybadger extension resulted in
script type="text/javascript" src="./End Credits-b_files/app.js">script type="text/javascript" src="http://www.youradexchange.com/ad/display.php?r=32796">/script>/head> So that had removed part of the problem but not the part that was trying to get me to download (presumably malware). I tried the same exercise in linux and got the same result in google chrome. however in firefox my page was as I had written it. there was no app.js in the complete webpage or on my server. Anyway this seems to be an issue from google chrome or an extension. Has anyone any light to shine on this issue? I wouldn't normally post an ask slashdot but as this appears to be modifying normal web pages i'm quite concerned.
script type="text/javascript" src="./End Credits_files/app.js">script type="text/javascript" src="http://www.youradexchange.com/ad/display.php?r=32796">link rel="stylesheet" type="text/css" href="chrome-extension://pkehgijcmpdhfbdbbnkijodmdjhbjlgp/skin/socialwidgets.css"> The extension part directed me to privacy badger. uninstalling the privacybadger extension resulted in
script type="text/javascript" src="./End Credits-b_files/app.js">script type="text/javascript" src="http://www.youradexchange.com/ad/display.php?r=32796">/script>/head> So that had removed part of the problem but not the part that was trying to get me to download (presumably malware). I tried the same exercise in linux and got the same result in google chrome. however in firefox my page was as I had written it. there was no app.js in the complete webpage or on my server. Anyway this seems to be an issue from google chrome or an extension. Has anyone any light to shine on this issue? I wouldn't normally post an ask slashdot but as this appears to be modifying normal web pages i'm quite concerned.