The Removal of EditThisCookie: What You Need to Know
In a surprising turn of events, the widely used Chrome extension EditThisCookie, designed for cookie management, has been removed from the Chrome Web Store. With a user base exceeding 3 million and over 11,000 ratings, its absence raises significant concerns, especially as a malicious copycat, previously known as EditThisCookies and currently branded as EditThisCookie®, continues to remain available.
Understanding the Situation
When attempting to access the legitimate EditThisCookie extension via its Chrome Web Store link, users encounter the frustrating “This item is not available“message. Meanwhile, the malicious copy remains operational. To ensure your security, it’s essential to be aware of this duplicity and the potential risks involved.
Investigating the Malicious Copycat
Malware investigator Eric Parker conducted a thorough analysis of the fake extension, documenting his findings in a clear YouTube video. At the time of the analysis, this copycat had over 30,000 users, a number that has since surpassed 50,000.
Identifying the Dangers
Parker’s investigation uncovered several red flags pertaining to the malicious extension, including:
- A fraudulent website posing as the extension’s legitimate page.
- Obfuscated code that hides its true intentions.
- Code designed to steal user information, particularly from social media platforms like Facebook.
- A clear emphasis on phishing tactics.
- Integration of advertising scripts.
Fortunately, during Parker’s analysis, he found no evidence of cookie data exfiltration, meaning session cookies remain untouched for now. However, users should remain vigilant due to the automatic extension updates enabled by default in Chrome, which could introduce more severe malware threats.
How to Check for the Malicious Extension
Chrome and Chromium users are encouraged to verify their list of installed extensions to ensure their safety. To do this, simply navigate to chrome://extensions/ in your browser’s address bar. Look for the extensions labeled EditThisCookies or EditThisCookie®. If either is present, it is crucial to remove it without delay.
What Are Your Options?
If you find yourself needing a reliable cookie management tool, consider using an alternative like Cookie Editor.
Final Thoughts
The removal of the legitimate EditThisCookie extension leaves many questions unanswered. Observations on GitHub note its unavailability could relate to the absence of support for the new Chrome Manifest V3. Since at least July 2024, the extension has not been accessible.
Instead of simply removing the malicious copycat, Google seems to have purged the legitimate tool, citing a lack of compliance with the latest extension guidelines. This scenario is reminiscent of past issues in the Chrome Web Store, where it has been plagued with copycat extensions, particularly those mimicking established names such as uBlock Origin.
As the situation evolves, the proliferation of copycat extensions, especially those not updated to meet new standards, is a trend we should closely monitor.
How do you feel about this situation? Do you thoroughly vet Chrome extensions before installing them? Your insights are welcome!
Additional Insights
1. What should I do if I have the malicious EditThisCookie extension installed?
If you discover the malicious EditThisCookie or EditThisCookies extension on your Chrome browser, immediately remove it by navigating to chrome://extensions/ and clicking “Remove.”Consider reviewing what permissions the extension has and monitor your accounts for unusual activity.
2. How can I distinguish between legitimate and malicious Chrome extensions?
To identify trustworthy extensions, check their ratings, developer information, and user reviews. Additionally, be cautious of extensions with similar names or slight variations that do not belong to well-known developers.
3. What are the implications of Chrome’s transition to Manifest V3 for developers and users?
The transition to Manifest V3 introduces stricter policies for Chrome extensions, aimed at enhancing user security and privacy. However, developers must adapt their extensions to comply with the new standards or risk removal from the Chrome Web Store, which could lead to a decrease in functionality or availability of beloved extensions.
Leave a Reply