I’m a user on the popular game platform Roblox.com, and I recently noticed a wave of messages on the platform about a new extension regarding the platform that would help around the website, etc.
However, I went to this extension and checked it’s code (I’m paranoid with account theft) and sure enough, the extension was grabbing cookie data and sending it to a project hosted on glitch to log. I feel that this project should be removed and the creator should be suspended, as I almost lost my account on a separate site, and this project is clearly malicious.
MALICIOUS PROJECT NAME: https://rbxanalytics.glitch.me
MALICIOUS CHROME EXTENSION: https://chrome.google.com/webstore/detail/rocksplus/gnaioifmkdcdodbdcfkpiamniiepehfm/reviews
The project is private so I cannot see it’s code, but I can confirm it has a logging section in its code that is being used by the extension.
There may even be more projects that do the same thing, I’m not sure, though.