Browser extensions turn nearly 1 million browsers into website-scraping bots - Ars Technica https://arstechnica.com/security/2025/07/browser-extensions-turn-nearly-1-million-browsers-into-website-scraping-bots/ "MellowTel causes extensions to activate a websocket that connects to an AWS server that collects the location, available bandwidth, heartbeats, and status of extension users. Besides the privacy erosions, the websocket also injects a hidden iframe into the page the user is currently viewing that connects to a list of websites specified by the Amazon Web Services server. There’s no way ordinary end users can determine what sites are being opened in the invisible iframe."