Mozilla Removed 23 Firefox Add-Ons For Logging Browser History

The Mozilla Foundation has removed an summation from the recommended browser summation listing inwards Firefox’s official weblog later a High German safety researcher Mike Kuketz discovered the software was secretly logging browser histories. The summation is described equally a service that offers extensive real-time protection.

The summation was flora to survive tracking users spider web activity as well as sending information dorsum to remote servers over unencrypted HTTP channel located inwards Germany. This could potentially expose users to Man-in-The-Middle attacks as well as spying. Web Security summation was removed for unwarranted tracking. Upon farther inspection, multiple add-ons amongst unlike features were flora to run the same code, as well as activeness against these has too been taken. Later, 23 to a greater extent than add-ons were wiped out as well as disabled. All of these add-ons were suspected to survive of the same person/group.

Another Reddit user suggested that in that place are a lot of add-ons that are collecting user’s page visits, however, when it comes to Web Security the Add-on has been sending a lot of masked information fifty-fifty later a user visits a domain over an unencrypted connection.

Mozilla engineer Jorge Villalobos explained inwards a Bugzilla update that activeness against these add-ons was taken non because they checked visited spider web pages, merely that it sent to a greater extent than information than what seemed necessary to operate, as well as that unopen to information was sent unsafely.

The summation was developed past times a High German theater named Creative Software Solutions, it has over 220,000 installs as well as an overall rating of 4.5 of 5. The master copy collection included fourteen add-ons which relate to privacy as well as security.

Raymond, uBlock Origin Developer (gorhill4) said:

“With this extension, I run into that for every page you lot charge inwards your browser, in that place is a POST to http://136.243.163.73/. The posted information is garbled, mayhap someone volition possess got the fourth dimension to investigate further.”

All of the add-ons removed past times Mozilla possess got been listed past times ID position out as well as unopen to of the to a greater extent than pop ones include Browser Security, SmartTube, Popup Blocker Ultimate, DirtyLittleHelpers, YTTools as well as Quick AMZ.