Are Web Browser Extensions Safe to Use? (2025 Update)
Several years ago, I wrote about the potential risks associated with web browser extensions (also referred to as “add-ons”) being able to abuse their power and access sensitive user data.
I said if someone has installed a malicious browser extension, their web browsing data (e.g., browsing history, password credentials, what they type into a website, etc.) may get sent directly to the extension’s creator, putting the user’s online security and privacy at risk.
Today, I received an email with a link to a news article, explaining how 18 separate web extensions for Edge and Google Chrome were caught spying on people.
Here is the link to the article: https://www.malwarebytes.com/blog/news/2025/07/millions-of-people-spied-on-by-malicious-browser-extensions-in-chrome-and-edge
This just goes to show, always be mindful about which web browser extensions you choose to install.
Posted in Android, Computers, General, Internet and Servers, Security, Software
Are Web Browser Extensions Safe to Use?
Many people use web browser add-ons (such as Ad-blockers) for their everyday browsing. What most people are unaware of is that many of these add-ons have permissions that allow the add-on to view the content of the web pages the user is viewing.
The problem? If someone has installed a malicious add-on, their web browsing data (e.g., browsing history, password credentials, what they type into a website, etc.) would have been sent to the add-on’s creator. Now I am not implying that every single web browser add-on does this, but there is a very high potential that this can happen.
Would only using open-source browser add-ons be a safe option? Well open-source add-ons would definitely lower the chance that someone would get away with spying on you. However open-source projects do not have a spotless security track record either. There is still some risk.
Even Mozilla themselves warn about this problem with web browser add-ons (also called extensions).
Here is an example of what I am talking about (https://www.zdnet.com/article/mozilla-removes-avast-and-avg-extensions-from-add-on-portal-over-snooping-claims/).
Posted in Android, Computers, General, Internet and Servers, Security, Software