Google announced this week new rules for the Chrome Web Store in an attempt to cut down the number of shady Chrome extensions submitted and listed on the site. From a report: Starting August 27, Google says it intends to enforce a new set of rules, which will result in a large number of extensions being delisted. These rules are meant to crack down on a series of practices extension developers have been recently employing to flood the Web Store with shady extensions or boost install counts for low-quality content. They include:
1. Developers cannot submit duplicate extensions anymore. (e.g. Wallpaper extensions that have different names but provide the user with the same wallpapers when installed.)
2. Extensions are not allowed to use "keyword spam" techniques to flood metadata fields with multiple terms and have the extension listed across multiple categories to improve the extension's visibility in search results.
3. Developers are not allowed to use misleading, improperly formatted, non-descriptive, irrelevant, excessive, or inappropriate metadata. Extension metadata needs to be accurate, and Google intends to be strict about it.
4. Developers are now forbidden from inflating product ratings, reviews, or install counts by illegitimate means, such as fraudulent or paid downloads, reviews, and ratings.

Google has announced the general availability of a long-awaited feature -- the ability to manage Windows 10 devices through G Suite. From a report: Until today, companies that used G Suite to manage corporate endpoints could only enroll Android, iOS, Chrome, and Jamboard devices. Once enrolled in a G Suite enterprise plan, system administrators at these companies would have full control over the enrolled devices, to ensure that company data was safeguarded from sloppy employees. G Suite admins could enforce security policies related to login operations, file storage, encryption, and other features. Starting this week, the same features are now also available for working with Windows 10 devices, Google announced in a blog post. These include the ability to, among other things: Log into Windows 10 systems using a Google account, control Windows 10 update rules, and change Windows 10 settings remotely.

An anonymous reader quotes a report from BetaNews: Microsoft is no stranger to hitting its customers with ads for its products and services, and it seems that the company is so keen that people make the switch to the new Chromium-based version of Edge that it is now bombarding Outlook.com users with banner ads. The ads are targeting people who visit the web-based version of Outlook using Google Chrome, and they see Microsoft extolling the speed and performance of its most recent web browser.

As spotted by Windows Latest a series of ads appear at the top of Outlook.com encouraging people to try out Microsoft Edge. In the ads, Microsoft claims that Edge brings "the best of the web," makes "Outlook more accessible," and boosts "speed, performance and compatibility." The good news about the latest batch of ads from Microsoft is that they are not terribly persistent. While there are a number of different banner ads which are displayed in rotation after a refresh or on each new visit to Outlook.com, once they have been dismissed they do not seem to make a reappearance.

Social distancing and stay-home orders have led to booming demand for grocery delivery services. In some big cities, people report not being able to find an open delivery time slot for days or weeks at a time. And now Motherboard has found a series of bots that automatically give some people an upper hand when limited delivery time slots are available on Amazon Fresh or Wholefoods. From a report: A slew of developers have made bots and other tools that, in some cases, automatically hunt for a free delivery slot, grab it, and then complete the user's food order, making sure they have a much better chance of buying food before other people snatch up the slot. While some of the developers told Motherboard they designed their bots to help those in need, such as senior citizens who may need to stay inside as exposure to the coronavirus could be more serious for them, others are dealing with the ethical issue of releasing a tool that can clearly be abused, by allowing those who can figure out how to use a technical tool to buy food while others go without.

"Yes, it's an unfair advantage over others who aren't tech-savvy but may still need to purchase items urgently. However, I try my best to reduce the abused [sic] problem," Manfong, the developer behind a Chrome extension that notifies users when a delivery slot is available, told Motherboard in an email. Checkout bots, often reserved for buying things like limited edition sneakers or concert tickets, are in particularly high demand at the moment for other items. Last week Motherboard reported how one developer had created a bot dedicated to buying the Nintendo Switch, with resellers grabbing as many as they can to sell for a profit during the crisis. Now, that idea of getting a technical one-up over others has expanded to buying essential items such as food.

Vivaldi, the browser launched by former Opera CEO Jon von Tetzchner, has long positioned itself as a highly customizable alternative to Chrome and Firefox for power users. Today, the team is launching version 3.0 of its desktop browser, with built-in tracker and ad blockers, and it's bringing its Android browser out of beta. From a report: I've long been a fan of Vivaldi, but the company was relatively late to the tracking protection game. Now it's doubling down by integrating a blocklist powered by DuckDuckGo's Tracker Radar. Like competing browsers, Vivaldi offers three blocking levels that users can easily toggle on and off for individual websites. Those blocking levels are relatively blunt, though, with the options to either block trackers, block trackers and ads, or disable blocking. Competitors like Edge offer slightly more nuanced options for blocking trackers, though I would expect Vivaldi to adopt a similar scheme over time.

The web-based Apple Music experience that launched in beta last September is now available at music.apple.com. MacRumors reports: The previous beta.music.apple.com address automatically forwards to the newly launched version. Once you're signed into the web version of Apple Music with your Apple ID that has an associated Apple Music subscription, you'll have access to all of your library and playlist content, as well as the same personal mixes and recommendations you'll see in the Music apps for iOS, Mac, and Android. Apple Music content plays right in the web browser, providing access for an array of devices and platforms that don't have native Music app support, include Windows 10, Linux, and Chrome OS.

Google has removed 49 Chrome extensions from the Web Store that posed as legitimate cryptocurrency wallet apps but contained malicious code that stole crypto-wallet private keys, mnemonic phrases, and other raw secrets. From a report: The 49 extensions were discovered by Harry Denley, Director of Security at the MyCrypto platform, who shared his findings exclusively with ZDNet last week. Denley says the 49 extensions appear to have been put together by the same person/group, believed to be a Russian-based threat actor. "Whilst the extensions all function the same, the branding is different depending on the user they are targeting," Denley said. The MyCrypto security researcher says he has identified malicious extensions posing as known crypto-wallets apps such as Ledger, Trezor, Jaxx, Electrum, MyEtherWallet, MetaMask, Exodus, and KeepKey.

An anonymous reader writes: Google today launched Chrome 81 for Windows, Mac, Linux, Android, and iOS. Chrome 81 includes an Origin Trial of Web NFC for mobile, early Augmented Reality support, mixed images autoupgraded to HTTPS, TLS 1.0 and TLS 1.1 deprecated, and more developer features. With over 1 billion users, Chrome is both a browser and a major platform that web developers must consider. In fact, with Chrome's regular additions and changes, developers have to stay on top of everything available -- as well as what has been deprecated or removed. Among other things, Chrome 81 removes the "discard" element and FTP support.

An anonymous reader writes: Mozilla today launched Firefox 75 for Windows, Mac, and Linux. Firefox 75 includes a revamped address bar with significant search improvements, a few performance tweaks, and a handful of developer features. You can download Firefox 75 for desktop now from Firefox.com, and all existing users should be able to upgrade to it automatically. According to Mozilla, Firefox has about 250 million active users, making it a major platform for web developers to consider.

When the coronavirus crisis took hold, millions found themselves spending more time in their browsers as they learn and work from home. But the crisis is also impacting software developers. Google was forced to pause its Chrome releases, which typically arrive every six weeks. Ultimately, Chrome 81 was delayed, Chrome 82 is being skipped altogether, and Chrome 83 has been moved up a few weeks. Microsoft has followed suit with Edge's release schedule, consistent with Google's open source Chromium project, which both Chrome and Edge are based on. Mozilla wants to make clear it is not in the same boat. The company took an indirect jab at Google and Microsoft today, saying: "We've built empathy into our systems for handling difficult or unexpected circumstances. These strengths are what allow us to continue to make progress where some of our competitors have had to slow down or stop work."

Long-time Slashdot reader AmiMoJo quotes Softpedia: It was probably just a matter of time, but the thing so many people, including everyone at Microsoft, expected finally happened: Microsoft Edge surpassed Mozilla Firefox to become the world's second most-used desktop browser. Data provided by market analysis firm NetMarketShare reveals that the whole thing happened in March, when the adoption of the Chromium-powered Microsoft Edge improved to a level that allowed it to overtake Mozilla's own browser.

So right now, Microsoft Edge is the second most-used desktop browser on the planet with a share of 7.59%, while Mozilla Firefox is now third with 7.19%.

As for who's leading the pack, Google Chrome continues to be number one with a share of 68.50%.

Part of America's Department of Homeland Security, the Cybersecurity and Infrastructure Security Agency (CISA) "has advised users to update Google Chrome as new high-rated security vulnerabilities have been found," reports Forbes: In an April 1 posting, CISA confirmed that Google Chrome version 80.0.3987.162 "addresses vulnerabilities that an attacker could exploit to take control of an affected system," be that Windows, Mac or Linux. It went on to state that it "encourages" users and administrators to apply the update. It's not just CISA that is warning about the need to update Google Chrome. The Center for Internet Security (CIS) is a non-profit entity that works to safeguard both private and public organizations against cyber threats. In a multi-state information sharing and analysis center (MS-ISAC) advisory, it has also warned of multiple vulnerabilities in Google Chrome.

The most severe of these could allow an attacker to achieve arbitrary code execution within the context of the browser... All it would take for an attacker to exploit the vulnerabilities is to get the user to visit, by way of a phishing attack or even redirection from a compromised site, a maliciously crafted web page.
Beside three high-rated vulnerabilities, Forbes reports that "a further five security vulnerabilities were discovered by the Google internal security team using a combination of internal audits and fuzzing."

Microsoft today announced upcoming features for its Edge browser based on Google's Chromium open source project, the same browser Google's Chrome is based on. Consumer features like Vertical Tabs, Smart Copy, and Password Monitor are coming soon. Microsoft also shared a few updates for existing or already announced features like Collections, InPrivate mode, and Immersive Reader.

An anonymous reader shares a report: Google paused Chrome updates last week when it canceled the Chrome 81 release in order to avoid causing severe disruptions to web developers, system administrators, and its own engineers, most working from home or having resources strained due to ever-worsening coronavirus (COVID-19) outbreak. In a blog post on the Chrome blog today, Google said it is now ready to resume work on Chrome. The company said that starting next week, the current Chrome 80 release will start receiving security updates once again. Chrome v81, initially scheduled to be released on March 17, was rescheduled for April 7, at which time, web developers and system administrators would have had the time to adapt to their new working conditions.

Microsoft has announced that it is pausing the rollout of Edge v81, citing the ongoing "global circumstances" surrounding the coronavirus outbreak. From a report: New Edge releases (or any other kind of software updates) usually entail security reviews and compatibility testing to ensure operating systems and internal web applications don't break. Due to the COVID-19 coronavirus outbreak, most system administrators are most likely busy handling the security of employees working from home and taking care of their families in these tough times. Microsoft said it does not want to put an extra strain on system administrators and other IT staff personnel by releasing a new Edge version at this particular time. Redmond's decision comes days after Google announced a similar measure for Chrome v81, postponing the v81 release indefinitely.

GameSpot calls it "like an AOL chat room" combined with Netflix. The Guardian reports: You log in, share a viewing link with friends, choose one person to be in charge of picking what you watch and, as your chosen show plays out in the bulk of the screen, a chatroom pops up on the right-hand side. You can discuss the show with the people in your room, or argue, or flirt, or veer wildly off-tangent because you've realised that you've picked an absolute dud to watch.

Right now, Netflix Party feels absolutely necessary. Self-quarantine has atomised us, and if this is the closest we can get to watching films and TV shows with our friends, then we'll grab it with both hands. But then again, even if this wasn't a time of enormous struggle, Netflix Party would be a terrific idea. Because the biggest downside to this vast glut of non-linear content is that nobody watches the same thing at the same time any more. There are no more water cooler series, because everyone at the water cooler has to tiptoe around the fact that they might be a few episodes ahead of everyone else, and one stray spoiler slip might ruin it for everyone else.

Television has always been a social pursuit, but this element has been lost in recent years.
"Twenty servers were added today to help more people spend time together without leaving home," notes Forbes.

Google said today it is pausing upcoming Chrome and Chrome OS releases due to the ongoing coronavirus (COVID-19) outbreak. From a report: The company cited "adjusted work schedules" as the primary reason for the delay, as most of its engineers are now working from home. The company published an official statement today after ZDNet reached out for comment last night, when Google failed to release Chrome v81. YouTube videos, tweets, and blog posts announcing the new Chrome release were posted online yesterday -- most likely scheduled days or weeks in advance. However, the actual Chrome v81 release never made it to users' devices, and the same videos, tweets, and blog posts were removed shortly after Google's PR realized their mistake.

An anonymous reader shares a report from TechCrunch, written by Devin Coldewey: It's no secret I'm a fan of the reMarkable, a tablet with a paper-like display that's focused on text and sketching rather than rich media and games. The sequel to the original, announced today, looks to make a good thing even better. Designed for the creation and consumption of monochromatic content like long documents, e-books, notes and sketches, the reMarkable set itself apart as a more minimalist alternative (or complement) to the likes of the iPad or Surface. The device was crowdfunded and has sold more than 100,000 units; meanwhile, the company has grown and attracted a $15 million A round. One sees in retrospect that the money helped launch this successor.

The most obvious change is to the design. It has a bold asymmetrical look with a chrome band along the left side, indicating the tablet's main use as an alternative to a paper notebook: Hold it with your left hand and write with your right. Sorry, lefties. The new tablet is just 4.7 mm (0.19 in) thick, thinner than the iPad Pro and Sony's competing Digital Paper tablets, both of which are 5.9 mm. Let's be honest -- at these levels of thinness it's getting hard to tell the difference, but it's an accomplishment nevertheless. [...] The software running on the reMarkable has received several major updates since the product made its debut, adding things like handwriting recognition, a new interface, better performance and so on. But one of the most requested features is finally coming with the new device: saving articles from the web. The company is claiming a 3x boost to battery life, using the same 3,000 mAh battery, based on performance improvements throughout and a more efficient (but more powerful) dual-core ARM processor. That means two weeks of use and 90 days of standby. This is welcome news, because frankly the battery life and power management on the last one were not great. The reMarkable 2 will sell for $399 if you pre-order, and comes with a Marker and a folio case.

According to 9to5Google, Google is working on a native Chrome OS app for printing and scanning documents. From the report: While there are many ways to start printing on Chrome OS, there's no real way to see what you've currently got queued to print, when not using Cloud Print [which is shutting down at the end of the year]. This is particularly frustrating if you've accidentally printed a long document as there's no way to cancel. [...] Late last month, work began on a new "Print Management app," starting with a Chrome OS specific flag in chrome://flags. Print Management is still in the early stages of development but we know that, like many Chrome OS apps, it'll be a web-based System Web App (SWA), which you can launch from the printers section of the main Settings app. Inside, you'll see a list of your recent printing attempts, including useful information like the job's name, what time it started, whether it succeeded, and which printer it was sent to.

And then, of course, on the flip side of working with paper documents is scanning, which is by no means easy to do on Chrome OS. Thankfully, Print Management will also include a UI for scanning documents and photos. The Chromium team is already working on this behind yet another flag.

DoNotPay, the digital lawyer that shot to prominence for its bot that helps drivers appeal parking tickets, has launched a new product aimed at consumers. With the DoNotPay Subscription Sharing Chrome extension, anyone can share access to their online accounts -- like Spotify, Netflix, Disney+ -- without divulging their password. From a report: To use the service, you need to install the DoNotPay Chrome extension, after which you'll be prompted to verify yourself by entering your mobile number and submitting an access code that is sent by SMS. Then, whenever you're logged into a website that you would like to share, such as Netflix or Spotify, you can tap the little DoNotPay icon at the top of the browser and then hit Generate Link. You'll be able to copy a link to share or enter a recipient's email address and push the Send Invite button. The recipient also needs to install the Chrome extension and verify themselves through DoNotPay, as this enables the sender to maintain control over who has access.

The account owner is able to revoke access at any time Joshua Browder, founder of DoNotPay, said there are no hard limits in terms of how many people you can share a link with. However, it's worth noting that many services automatically restrict the number of devices that can stream content simultaneously. [...] In terms of the underlying technology, DoNotPay effectively enables the secure transfer of a logged-in session by encrypting cookies for the website that is being shared.

"New academic research published last month looked at the phone-home [telemetry] features of six of today's most popular browsers and found that the Brave browser sent the smallest amount of data about its users back to the browser maker's servers," reports ZDNet: The research, conducted by Douglas J. Leith, a professor at Trinity College at the University of Dublin, looked at Google Chrome, Mozilla Firefox, Apple Safari, Brave, Microsoft Edge (the new Chromium-based version), and the Yandex Browser.

"In the first (most private) group lies Brave, in the second Chrome, Firefox, and Safari, and in the third (least private) group lie Edge and Yandex...." [T]he professor found evidence that Chrome, Firefox, and Safari all tagged telemetry data with identifiers that were linked to each browser instance. These identifiers allowed Google, Mozilla, and Apple to track users across browser restarts, but also across browser reinstalls...

[T]he most intrusive phoning-home features were found in the new version of Microsoft Edge and the official Yandex Browser. According to Prof. Leith, both used unique identifiers that were linked to the device's hardware, rather than the browser installation. Tracking users by hardware allows Microsoft and Yandex to follow users across installations and potentially link browser installs with other apps and online identities. The professor said that Edge collected the hardware UUID of the user's computer, an identifier that cannot be easily changed or deleted without altering a computer's hardware. Similarly, Prof. Leith also found that Yandex transmitted a hash of the hardware serial number and MAC address to its backend servers.

"As far as we can tell this behaviour [in Edge and Yandex] cannot be disabled by users," the professor said.
The article also points out that Brave was the only browser that didn't use search autocomplete functionality to collect and send back information on a user's visited web pages. (Even though this can be disabled in Firefox, Chrome, and Safari, it's on by default.)

But Edge and Yandex "also sent back information about visited web pages that did not appear to be related to the search autocomplete feature, suggesting the browsers had other ways to track users' browsing habits."