Do Son 
Some software engineers have issued a warning that the well-known webpage customisation extension STYLISH privately collects user history records and uploads them to the advertisement server.
The primary function of this extension is to modify the web cascading style sheet so that users can customise the style of the web page through STYLISH.
Unfortunately, the original author of STYLISH sold it two years ago. After many changes, the extension was bought by a notorious developer.
Secretly collect user browsing records for analysis:
The notorious developer bought STYLISH and replaced the code, then began collecting user browsing records and uploading them to the ad server.
The ad server generates a separate identifier for each user and then shares it with other advertisers who rely on STYLISH to deliver more accurate ads.
STYLISH-based visibility This event has affected up to two million users, and this collection has been undetected for a long time.
Google and Firefox urgently removed it:
After receiving feedback from the software engineer, Google Chrome and Firefox have urgently removed STYLISH containing malicious code from the store.
However, it is unclear whether the advertisers behind it will be re-edited and submitted. If the resubmission is approved, then users may be fooled.
It is recommended that users who use the STYLISH extension immediately remove the extension and do not download it again, but there is no better alternative extension for the time being.
Support Our Threat Intelligence
If you find our CVE report and cybersecurity news helpful, consider supporting our work.
Buy Me a Coffee
PayPal
