Tag: extensions
Beware: many ChatGPT extensions and apps could be malware
ChatGPT Chrome extensions are mainly junk – but I’ve found 4 worth installing
Make ChatGPT Work for You With These Browser Extensions
I’m a gym girl with a sleeper build – I’m so ripped men accuse me of faking my leg extensions
A GYM girl has shared that her so-called sleeper build has led men to accuse her of faking her leg extensions.
Licensed personal trainer Amanda Fransson, who posts on Instagram under the handle @amandafranssoonnn, shared the allegations in a recent video.
Amanda starts her video by showing off her gym fit.
She’s seen wearing leggings and a loose-fitting tshirt.
“I’m now going to call myself a ‘sleeper build’ because while I look fit I definitely look a lot weaker than I actually am,” she shared in the video’s on-screen text.
The video then shows various clips of her workout, during which she works on leg extensions and deadlifts, among other areas.
“If you’ve followed my stories the past days, you know that a dude got so provoked by my lifting that he made a whole video claiming that I’m faking the leg extension machine,” her caption reads in part.
“Well this is the video!
“Do you think I’m bringing a fake leg extension machine with me to the gym when I record my workouts?”
Amanda’s video has been liked more than 13,000 times.
The comments section is filled with people supporting the personal trainer.
“Think they are upset you do more on the machine than them,” one person wrote.
“Dude got upset you were repping his PR,” commented another.
“I think you look great honestly and def not weak,” someone else chimed in.
“Nah I think sleeper build is the perfect term. You’re definitely way stronger than you look,” said another.
83% of GNOME Users Installed Extensions, Survey Shows
Here’s the distribution of distros for all 2,560 respondents:
Fedora: 1,376 (54.69%)
Arch: 469 (18.64%)
Ubuntu: 267 (10.61%)
Manjaro: 140 (5.56%)
EndeavourOS: 66 (2.62%)
Debian: 44 (1.75%)
openSUSE: 38 (1.51%)
Pop! 38 (1.51%)
Other: 78 (3.10%)
And the breakdown of hardware manufacturers (top four):
Lenovo: 516 (23.54%)
Dell: 329 (15.01%)
ASUS: 261 (11.91%)
HP: 223 (10.17%)
The site OMG! Linux pointed out that 90% of systems had Flatpak installed — (though it’s enabled by default on Fedora, which was 54.69% of all the respondents). Some other interesting stats they noticed:
– Most common default browser: Firefox (73.14%), Chrome (11.64%), Brave (4.76%). [Microsoft Edge was the default browser on 37 systems (1.51%) ]
– 83% of users have at least one (non-default) GNOME extension installed
– ‘App Indicator’ is the most popular extension (by 43% of those using extensions)
– GSConnect, User Themes, and Dash to Panel/Dock also widely used
– Most popular desktop apps: GIMP (58.48%), VLC (53.71%), Steam (53.40%)
[…] The popularity of GNOME extensions will surprise no-one. It is a solid indicator that the existing GNOME extension system is good at doing what it’s there to: let users augment and extend their system in the ways they want.
GNOME’s report adds that “it’s exciting to see the popularity of new GNOME apps like Flatseal, To Do, Bottles, and Fragments.”
One other interesting stat from their report: 55% of the participants were using Online Accounts, with Google the most common one added, followed by Nextcloud and Microsoft. But “Some of the account types had very little usage at all, with Foursquare, Facebook, Media Server, Flickr and Last.fm all being active on less than 1% of systems.”
Read more of this story at Slashdot.
Extensions are Easily Impersonated in Microsoft’s VSCode Marketplace, Researchers Say
Unfortunately, InfoWorld reports, “Researchers at Aqua Nautilus say they have found that attackers could easily impersonate popular extensions and trick unknowing developers into downloading them.”
It can be challenging to distinguish between malicious and benign extensions, and the lack of sandbox capabilities means that extensions could install ransomware, wipers, and other malicious code, Aqua security researcher Ilay Goldman wrote in a January 6 blog post. [“In fact, it can access and even alter all the code that you have locally and even use your SSH key to change the code in all your organization’s repositories.”] VS Code extensions, which provide capabilities ranging from Python language support to JSON file editing, can be downloaded from Microsoft’s Visual Studio Code Marketplace.
Aqua Nautilus uploaded an extension masquerading as the Prettier code formatter and saw more than 1,000 installs in less than 48 hours, from around the world. The spoof extension has been removed.
Goldman noted that the Visual Studio Code Marketplace runs a virus scan for each new extension and subsequent updates, and removes malicious extensions when it finds them. Users can report suspicious-looking extensions via a Report Abuse link.
“While the media is full of stories about malicious packages that have been uploaded to popular package managers such as NPM and PyPI, there is very little information about malicious VSCode extension,” the blog post notes. Yet it points out that a blue checkmark on a VSCode extension “merely means that whoever the publisher is has proven the ownership of a domain. That means any domain.”
And even Microsoft acknowledged to InfoWorld that social engineering techniques have been used to persuade victims to download malicious extensions — though they point out that Microsoft confirms that each extension has a Marketplace certificate and verifiable signature before being installed. “To help make informed decisions, we recommend consumers review information, such as domain verification, ratings and feedback to prevent unwanted downloads.”
Read more of this story at Slashdot.
3 Google Chrome extensions to boost productivity I’d never heard of before
Google announces its favorite Chrome extensions of the year
Google Delays a Controversial Change to Chrome Extensions
Google officially introduced a new standard for Chrome extensions at the end of 2020, known as Manifest V3, which isn’t popular with everyone. Now the company is delaying plans to block extensions that haven’t been updated yet.