After @SwiftOnSecurity [started Tweeting about it](https://twitter.com/SwiftOnSecurity/status/723562435601264640?lang=en) to his hundred thousand follower base on daily basis.
[Reported at least 4 months ago](https://www.reddit.com/r/chrome/comments/3ui5kx/chrome_store_has_a_fakemalicious_version_of/).
[Another report 6 months ago?](https://www.reddit.com/r/chrome/comments/3nawx1/help_i_accidentally_installed_a_scam_version_of/)
Thank you for finally removing the malware.
It’s been a different one every time, not the same one.
How do you tell if you have the legit one? I recently switched to Chrome to try out over Firefox a few days ago and installed “uBlock Origin offered by gorhill.” It had 6,000+ reviews and 3.5m+ downloads over the other “uBlock” so I figured it was the real one.
Note that the fake one is an App, not an extension.
If only Google had people who were good with writing search algorithms and could ensure that the most popular item in the chrome store with a given name were the top result.
Their current algorithm prioritizes the “applications” category above the “extensions” category. Which is why if you search for [ublock origin](https://chrome.google.com/webstore/search/ublock%20origin?hl=en) in the chrome store, you now get some other **not** ublock-origin application showing up above the extension.
Really, this should be more embarassing for Google than the 4 months it took them to remove the malicious one would suggest it is.