Is The Google Hangouts Extension Spying on You?
TLDRA viral tweet has raised concerns about a non-removable Google Hangouts extension in Google Chrome, which can connect to google.com and access system CPU, GPU, and RAM usage statistics. Despite Google Hangouts being discontinued, the extension might violate EU's DMA laws by favoring Google Meet over competitors. Users are advised to consider alternative browsers, with some Chromium forks offering the option to disable the extension, while Firefox and its derivatives are free from this issue.
Takeaways
- 🔍 A tweet about a Google Chrome extension related to the discontinued Google Hangouts service has gone viral.
- 🛡️ The Hangouts extension cannot be disabled or seen in the extensions panel and only connects to google.com over HTTPS.
- 🔑 The extension uses the system.cpu API to fingerprint the CPU and get real-time statistics about CPU, GPU, and RAM usage without user consent.
- 🚫 The extension's default inclusion in Google Chrome may violate EU's DMA laws, which promote user freedom and prevent platform lock-in.
- 📚 Google Hangouts was discontinued in 2022, but its code is still present in Google Meet and other services.
- 🤔 Concerns have been raised that the extension could give Google Meet an unfair advantage over competitors like Zoom or Skype.
- 🧐 Some speculate that the extension might be spyware, but it's more likely just unused code or a potential DMA violation.
- 🛠️ To remove the extension, one would have to modify and recompile the Chrome source code, as done by the ungoogled-chromium developers.
- 👀 Google already tracks user activity extensively for targeted advertising, so additional tracking via the extension may not provide much new data.
- 👍 The video suggests that the Hangouts extension might be removed in a future Chrome update to address user concerns and potential legal issues.
- 🛑 The video recommends using non-Chromium-based browsers or Chromium forks that have disabled the Hangouts extension to maintain privacy.
Q & A
What is the main concern raised by the software developer's tweet about Google Chrome's extension?
-The main concern is that there is a default extension related to the discontinued Google Hangouts service that cannot be disabled or removed from Google Chrome, which can potentially connect back to Google and access system CPU, GPU, and RAM usage statistics without user consent.
Why is the Google Hangouts extension a potential issue for Google in terms of compliance with the EU's DMA laws?
-The DMA laws aim to prevent large digital platform providers from giving their products an unfair advantage on their platforms. Since the Hangouts extension only connects to Google and not to other video chat programs like Zoom or Skype, it could be seen as a violation of these laws, potentially giving Google Meet an unfair advantage.
What does the extension's ability to access the system's CPU, GPU, and RAM usage statistics imply in terms of user privacy?
-This ability implies that the extension can potentially fingerprint the user's device and track resource usage over time, raising concerns about user privacy and whether this data is being used for targeted advertising or other purposes without explicit user consent.
What was the fate of Google Hangouts, and how does it relate to the current issue with the extension?
-Google Hangouts was discontinued in 2022, but remnants of its code, including the extension in question, still exist in Google Chrome. This has led to concerns about why the extension remains and what purpose it serves, especially since it cannot be disabled by users.
How does the presence of the Hangouts extension in other Chromium-based browsers compare to Google Chrome?
-The Hangouts extension is present in other Chromium-based browsers like Microsoft Edge and Brave, but some, like Brave, allow users to disable it through browser settings. Forks of Chromium and browsers like Firefox do not have this extension by default.
What is the suggestion for users who are concerned about privacy and the Hangouts extension in their browsers?
-The suggestion is to stop using Chromium-based browsers, especially Google Chrome, and consider switching to browsers that do not have the Hangouts extension or allow it to be disabled, such as certain Chromium forks or Firefox.
What is the role of the system.CPU API in the context of the Hangouts extension?
-The system.CPU API allows the Hangouts extension to access detailed information about the CPU, GPU, and RAM usage of the system in real-time, which can be used for device fingerprinting and tracking resource usage.
Why might Google be compelled to remove the Hangouts extension in the future?
-Google might be compelled to remove the Hangouts extension to avoid potential fines from the EU for violating DMA laws, or if it is determined that the extension is unnecessary and contributes to browser bloat.
What alternative browsers are suggested for users who want to avoid potential privacy issues with Google Chrome?
-Users are suggested to consider using browsers like Ungoogled Chromium, which is compiled without certain Google-specific features, or other Chromium forks and browsers like Firefox that do not include the Hangouts extension.
How does the script's author view the potential implications of the Hangouts extension for Google's reputation?
-The author suggests that the presence of the Hangouts extension is a 'bad look' for Google, as it raises privacy concerns and could lead to negative public perception, possibly prompting Google to remove the extension in a future update.
Outlines
🔒 Unremovable Hangouts Extension in Chrome Raises Privacy Concerns
The video discusses a viral tweet about an unremovable extension in Google Chrome related to the discontinued Google Hangouts service. This extension, which does not appear in the browser's extensions panel, can only connect to Google's domains over HTTPS and uses the system.CPU API to gather real-time statistics about the device's CPU, GPU, and RAM usage without user consent. The video suggests that this might be a violation of the EU's DMA laws, which aim to prevent tech companies from favoring their own products and services on their platforms. It also raises questions about user privacy and the potential for Google to use this data for targeted advertising or to improve its Google Meet service, which has inherited some of Hangouts' code.
🕵️♂️ Debunking Spyware Claims and Exploring Alternative Browsers
The second paragraph addresses rumors that the Hangouts extension is a form of spyware, arguing that while Google already tracks user activity extensively, it's unlikely that fingerprinting CPU usage would provide significant additional benefits. The video acknowledges public dissatisfaction with this hidden feature and speculates that Google may remove the extension in a future update to avoid EU fines under DMA regulations. It also suggests that the best way to avoid such issues is to switch to browsers not based on Chromium, such as ungoogled Chromium, or to use browsers like Brave, which allows users to disable the extension, or Firefox, which does not include the Hangouts code. The video ends with a call to action for viewers to support the content creator and a reminder of the importance of privacy in browser choice.
Mindmap
Keywords
💡Google Hangouts Extension
💡Google Chrome
💡System CPU API
💡WebRTC
💡EU DMA Laws
💡Google Meet
💡Ungoogled Chromium
💡Fingerprinting
💡Privacy Concerns
💡Browser Bloat
Highlights
A tweet from a software developer about a default extension in Google Chrome related to the discontinued Google Hangouts service went viral.
The Hangouts extension in Google Chrome cannot be disabled and does not appear in the extensions panel.
This extension only connects to Google domains and uses the system CPU API, allowing it to fully fingerprint the CPU and get real-time statistics about CPU, GPU, and RAM usage.
Unlike other extensions, this default extension does not request user permission to access the system CPU API.
Google Hangouts, discontinued in 2022, was one of the first web apps to allow video calling in the browser.
Google Meet, developed to replace Hangouts, may still use some of Hangouts' code.
The presence of this extension raises concerns about compliance with the EU's Digital Markets Act (DMA).
The DMA prohibits gatekeepers from giving their products a favorable advantage on their platforms.
Google Meet's access to the extension could be seen as unfair since competitors like Zoom and Skype cannot access the same CPU, GPU, and RAM statistics.
Users are unable to uninstall this pre-installed extension, potentially violating DMA rules.
Concerns have been raised about the extension being secret spyware, but Google already tracks extensive user data for targeted advertising.
The extension could be seen as unnecessary bloat in Chrome, which is already considered bloated.
Removing the extension could make Chrome slightly faster.
If the extension is used by Google Meet, it might still be in violation of the DMA.
To avoid this extension, users are advised to switch to non-Chromium based browsers or versions like ungoogled Chromium.
Microsoft Edge and Brave browsers also have this Hangouts extension enabled by default.
Brave allows users to disable the extension through settings.
Firefox and its forks do not contain the Hangouts code, making them preferable for privacy-conscious users.
Users are encouraged to switch to browsers that are not Chrome to avoid Google spyware.