Blog
About us
Contact us

Beware of untrustworthy Magento extension builders

magento-signs

Wow, while talking with a couple of other Magento professionals today we uncovered an extension developer with a possibly nefarious scheme. One (or perhaps more) of their extensions adds a static page to your Magento installation which contains a large piece of advertising specifically about their development expertise. So far about 5000 Magento stores are affected.

The extension developer’s name is “Magazento”, I will not link to them. It’s possible their terms of use make it clear that their extension adds the static page, but it’s safe to assume most of the 5000 stores that have this static page are not fully aware they are featuring this page.

The result, and affected shops, can be viewed by following the following URL with Google results: Google query affected shops. A couple of screenshots can be found below, showing the list of Google results and the static page which can be found when following the first result.

As always, beware of who you’re dealing with and what the extensions you are installing actually do in your store.

 

The Author of this post is sander

Versatile web enthusiast. Especially interested in user experience design and blogs about that on GraphicMania.

2 Responses »

  1. Thanks for this Sander, just another reason why only trusted extension developers should ever be used by any Magento merchant.

  2. It’s a pity, but even some major developers do this.

    For example:
    1) Aheadworks, their free blog module inserts a link in the footer to thir site
    2) Mageworks, “custom options” plugin adds “developed by mageworx”

    Do you know more examples? I think we need to stop this.

Leave a Comment