this post was submitted on 03 Nov 2024
156 points (100.0% liked)

Cybersecurity

5680 readers
103 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 6 points 1 week ago (1 children)

I like how the recommended remediation to this malicious extension is to install an extension for monitoring extensions.

Serious question though: is "can connect to network" a permission on Chrome apps? What about Mozilla? It seems like this, more than anything, is what needs to be locked down for all apps (beyond just browser extensions). Like on my MacBook for example, I have to give apps explicit permission to access folders like Documents. But I'm pretty sure they can all access the Internet without restriction, right? That seems crazy to me.

[–] [email protected] 5 points 1 week ago (1 children)

Get Little Snitch.

Although yeah it’s wild that’s not built in.