98
submitted 11 months ago* (last edited 11 months ago) by Aatube@kbin.social to c/technology@lemmy.world

https://github.com/uBlockOrigin/uAssets/issues/5184#issuecomment-1829172308

Twitch is a dangerous website, the extension probably won't be back. They could still easily target you at any time and you are just lucky they are sending ads. After some time of using the extension twitch will react and become even more toxic.

Twitch even has a network sniffer in its source code (among other things), its so much worse than just ads, some of these experiments are basically malware/pup that no-one would install on their device willingly, these instances aren't just left over code from some library they are deliberately crafted experiments that are present in the active code path.

top 35 comments
sorted by: hot top controversial new old
[-] testfactor@lemmy.world 101 points 11 months ago

Forgive me if I wait for more concrete evidence than the word of a guy who refuses to cite his sources because he thinks Twitch is in collusion with the US Government and he may be thrown in jail or disappeared for doing a write up on some publicly available source code.

[-] orhtej2@eviltoast.org 46 points 11 months ago

The duck did I just read, some AI is attempting SEO or something?

What an absolute garbage statement devoid of any proof nor tbh technical possibility to implement.

[-] TORFdot0@lemmy.world 22 points 11 months ago

based on the randomly inserted code block that isn't even syntax-correct, to say nothing about how it doesn't even make sense, seems to be a tell tale sign of either 1.) AI generated or 2.) schizophrenic generated

[-] Aatube@kbin.social 1 points 11 months ago

hmm, which parts of it aren't syntax correct? see below, they made an extension before pulling it

[-] crystal@feddit.de 5 points 11 months ago

I don't see an issue in these two lines.

The only thing is that they are most likely not actually successive lines (because otherwise that code would be pretty weird).

I think that the point of the code is only to show the function names.

[-] BlackEco@lemmy.blackeco.com 7 points 11 months ago

MostlyJustBored's account 3 weeks old with no history. We should take whatever that guy says with a grain of salt.

[-] SpaceNoodle@lemmy.world 6 points 11 months ago
[-] vfsh 3 points 11 months ago

The whole salt flat *

[-] Aatube@kbin.social 1 points 11 months ago
[-] BlackEco@lemmy.blackeco.com 3 points 11 months ago

Maybe you should update your post to reflect that, because right now it's kinda clickbaity

[-] Aatube@kbin.social 1 points 11 months ago
[-] SpaceNoodle@lemmy.world 3 points 11 months ago
[-] Aatube@kbin.social 1 points 11 months ago
[-] SpaceNoodle@lemmy.world 1 points 11 months ago

Take down the unhinged ramblings?

[-] Aatube@kbin.social 1 points 11 months ago
[-] SpaceNoodle@lemmy.world 1 points 11 months ago

Watching others suffer from mental illness isn't "interesting."

[-] Aatube@kbin.social 1 points 11 months ago

Nothing’s confirmed yet, plus I posted this with the interest of having someone knowledgeable try and verify the accusations.

[-] SpaceNoodle@lemmy.world 1 points 11 months ago* (last edited 11 months ago)

Oh! Good news: it's total lunacy, as also indicated by others.

But if that was really your intent, maybe the title should be "Is this real or not?" instead of some clickbaity junk

[-] Aatube@kbin.social 1 points 11 months ago

I’m pretty sure “claim” and “new” already tell you “is this real or not”.

[-] SpaceNoodle@lemmy.world 1 points 11 months ago

"Unhinged amateur who can only read function names overreacts to some boring JavaScript" would be more accurate.

[-] Aatube@kbin.social 1 points 11 months ago
  1. I really doubt that the function names are really there, after all almost all big websites have their JS minified now...
  2. They said "No, I am not just looking at variable names you amateurs." before accusing the other user featured in the screenshot of hacking their computer
[-] SpaceNoodle@lemmy.world 1 points 11 months ago

Like I said, unhinged.

[-] Aatube@kbin.social 2 points 11 months ago* (last edited 11 months ago)

I doubt it’s just SEO… The fact that his first attempt at the comment was deleted by uBlock’s team and that his claim to be the developer of a now pulled Twitch adblock extension makes this interesting

[-] LWD@lemm.ee 26 points 11 months ago* (last edited 11 months ago)
[-] Aatube@kbin.social 2 points 11 months ago

That is, they claim to be. While I don’t know much JavaScript, someone below claims it’s not valid JavaScript

[-] LWD@lemm.ee 7 points 11 months ago* (last edited 11 months ago)
[-] LWD@lemm.ee 3 points 11 months ago* (last edited 11 months ago)
[-] FishFace@lemmy.world 21 points 11 months ago

network sniffing

This is only worth paying attention to if someone can say how they not only escaped the browser sandbox but then called native, privileged code. Javascript running in the browser cannot just do that.

[-] scottmeme@sh.itjust.works 18 points 11 months ago

Schizo post?

[-] redditReallySucks@lemmy.dbzer0.com 9 points 11 months ago

If this was true, we would have much bigger problems than twitch. The dude determined twitch was spying on you based on function names (allegedly)

[-] thelastknowngod@lemm.ee 7 points 11 months ago

This is what it feels like to interact with the Linux/opensource/selfhost people sometimes.

"bUt ThEy CaN wAtCh YoU!!1!"

[-] Prater@lemmy.world 2 points 11 months ago* (last edited 11 months ago)

I mean they can watch and monitor your activity on their website, and are probably partnered with many other websites to collate data on your interests and beliefs to feed into a chunky advertising algorithm sooooo...

But you didn't want to hear that, did you?

[-] essteeyou@lemmy.world 4 points 11 months ago

We all know that to a degree, but do you really think they're in collusion with the US government to jail anyone who mentions it?

I also don't think the dude gave anywhere near enough information to explain why search engines and browsers should be blocking access to Twitch. They made a lot of claims, but no proof.

[-] Prater@lemmy.world 4 points 11 months ago

Yeah. Just to clarify, I didn't mean to try to validate conspiracy theories like these and wasn't suggesting that this guy is right, but that it's wrong to ignore the large amount of data that closed source applications oftentimes do collect on you.

[-] kpw@kbin.social 6 points 11 months ago

What network requests can it sniff? Shouldn't this be a browser security bug?

this post was submitted on 28 Nov 2023
98 points (100.0% liked)

Technology

59554 readers
2721 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS