Link is this: https://addons.mozilla.org/it/android/addon/get-tamper-monkey/
How can feature something like that?
I don’t know if I’d say promote. It’s likely there because of possibly fake reviews giving it 5 stars.
I reported it though, not sure about malware but it’s clearly trying to copy an existing extension.
Yeah, in what OP screenshotted, they’re just showing off any extensions, not specifically particularly good ones. Obviously, fraudulent or malicious extensions are not supposed to be in the add-ons store to begin with, though.
They do have a separate quality gate for extensions that are genuinely recommended to users.
Thank you.
Add-on stores are disappointing across the board. I struggled to find the official Firefox “turn any URL into a sidebar” extension the other day, and Google isn’t much better (their PiP extension won’t come up if you search “PiP” or even “picture in”).
Considering Mozilla purchased and then cannibalized FakeSpot, you’d figure they would have the technology for identifying fake or sketchy reviews.
i don’t think it’s malware looking at the source but I did use the reporting tool on the addon page to report it as a clone
Maybe they are waiting to have a big enough install base before pushing obfuscated malicious code in an automatic update
Huh? Do you know what tamper monkey even is? It’s simply just a JS injector you can do even with the dev tools with the regular browser now with no extensions installed. This extension simply automates this process and is extensively used for modding browser based games. It’s not malware or for malicious use in and of itself.Edit: it’s the name squatting “Tamper monkey” versus the official “Tampermonkey” extension
The extension entry that OP is talking about seems to be pretending to be Tampermonkey, when it’s not.
This is the real Tampermonkey: https://addons.mozilla.org/en-US/firefox/addon/tampermonkey/
Oh wow that’s a good catch I didn’t even notice it at first. Thanks!
That’s how they get ya!
It’s also my fault for the misunderstanding because I posted without full explanation
You are discussing https://addons.mozilla.org/en-US/firefox/addon/tampermonkey/
The screenshot is discussing https://addons.mozilla.org/en-US/firefox/addon/get-tamper-monkey/
I haven’t been able to find any official reference to the latter so it’s plausibly impersonating the real thing.
Edit: nvm, guess it’s trying to use the name. Good catch
What’s wrong with Tamper Monkey? It’s just like grease monkey. I’ve used one or the other for ages
deleted by creator
