• thantik@lemmy.world
    link
    fedilink
    English
    arrow-up
    25
    arrow-down
    5
    ·
    edit-2
    11 months ago

    Looks like another good reason not to ever use Chrome – even on Mobile.

    • epyon22@programming.dev
      link
      fedilink
      English
      arrow-up
      19
      ·
      11 months ago

      They seemed to have demonstrated it on chrome and leveraged by the chrome browser but I don’t see why this couldn’t be exploited on any browser.

      • Pretzilla@lemmy.world
        link
        fedilink
        English
        arrow-up
        6
        arrow-down
        2
        ·
        11 months ago

        Chromium is implied. Firefox isn’t based on that code base unlike most every other browser.

        • epyon22@programming.dev
          link
          fedilink
          English
          arrow-up
          4
          ·
          11 months ago

          It’s based on security hole in what I’m interpreting as a web API. You leverage a legitimatly logged in Google account on a malicious website and this web endpoint gives you keys to everything else