Mozilla banned the popular Firefox add-on YouTube Unblocker yesterday after it was confirmed that it tampers with Firefox security preferences, and downloads and installs an unrelated add-on from an unofficial website.
The add-on, used to unblock YouTube videos that are blocked in certain countries by redirecting access through proxy servers in countries where the video is available, has hundreds of thousands of users.
The bug report on Bugzilla offers details on the add-on's wrong doings. It disables Firefox security preferences using user.js manipulations, among them the blocklist feature and add-on signature enforcement, and downloads another add-on afterwards, named Adblock Converter, which it hides from the browser's Add-on Manager.
Please note that the downloaded extension may use different names, so make sure you check for any add-on listed in the Add-ons Manager that you have not installed.
Looking at the code of the add-on "YouTube Unblocker", I found the responsible code in the file email@example.com\resources\unblocker-api\lib\utils.js following line 138. The function updateConfigFile() downloads files from a web server and places them onto the hard drive of the user.
In the case of the attached response.json it is a user.js and a malicious add-on. Both are a clear violation of the add-on guidelines.
Firefox users who have the add-on installed in the browser should consider the following course of action immediately:
Firefox users who want to be on the safe side should consider resetting the browser instead. This can also be done by holding down the Shift-key on the keyboard during start of the browser.
Select Refresh Firefox this time to reset the browser. Please note that this will remove installed add-ons, themes, and reset preferences and other customization, but will keep bookmarks, passwords, the browsing history and open windows and tabs among other things.
The add-on is no longer listed on Mozilla's official Add-ons repository (AMO). (via Sören Hentzschel)Advertisement
Advertising revenue is falling fast across the Internet, and independently-run sites like Ghacks are hit hardest by it. The advertising model in its current form is coming to an end, and we have to find other ways to continue operating this site.
We are committed to keeping our content free and independent, which means no paywalls, no sponsored posts, no annoying ad formats or subscription fees.
If you like our content, and would like to help, please consider making a contribution:
Ghacks is a technology news blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular tech news sites on the Internet with five authors and regular contributions from freelance writers.