Popular Chrome Extension Flagged for Malware
▼ Summary
– Google has blocked the popular Chrome extension “Save as Image Type” because it contains malware.
– The malware reportedly hijacked affiliate links on sites like Amazon and Best Buy to steal revenue.
– This issue was confirmed by multiple users and an old Reddit thread suggests Microsoft Edge removed it a year ago.
– The extension’s behavior is compared to the Honey extension, which was previously caught poaching affiliate revenue.
– The blocked extension was primarily used to convert WebP images into more common formats like PNG or JPEG.
A widely used Chrome extension known for converting web images into more common formats has been officially blocked by Google after being flagged for containing malware. The popular tool, Save as Image Type, was disabled by Chrome after security alerts indicated it was hijacking affiliate links from major retailers like Amazon and Best Buy, effectively diverting revenue. This action highlights ongoing concerns about browser security and the potential risks posed by seemingly harmless add-ons.
Users began noticing alerts in their Chrome browsers stating the extension was blocked due to malware. Reports from affected individuals and discussions on platforms like Reddit confirm the issue is widespread. Interestingly, evidence suggests Microsoft Edge may have removed the same extension from its store approximately a year prior, indicating a potentially long-standing problem.
The malicious behavior appears to involve the unauthorized modification of affiliate links. One user detailed persistent redirects on Best Buy’s website that only occurred when the extension was active, resolving in incognito mode where extensions are typically disabled. Others reported similar interference with Amazon links, where the add-on altered affiliate codes. This tactic mirrors a scheme previously associated with the Honey extension, which was investigated in 2024 for poaching affiliate revenue by swapping in its own codes during user checkouts.
Save as Image Type was particularly valued for its ability to easily save WebP images as PNG or JPEG files, a common need for many web users. Its removal leaves a functional gap, prompting users to seek alternatives. Some community recommendations include extensions like Save Image As JPG, PNG, WebP, though these have not been thoroughly vetted. Another option, Save as Image Converter, has been installed by some former users with cautious initial approval, though its long-term safety remains unverified.
The incident raises broader questions about the security of browser ecosystems. While Google’s action to block the extension is a protective measure, it also underscores how malicious code can infiltrate official repositories and operate undetected for extended periods. Users are reminded to regularly audit their installed extensions, check reviews and developer details, and remain cautious with tools that require broad permissions to modify web page data.
Google has been contacted for an official statement regarding the specific malware and the reason for the block. This article will be updated with any response from the company. In the meantime, users who relied on the extension must find secure alternatives and consider this event a reminder of the importance of digital vigilance.
(Source: Android Authority)
