Microsoft researchers toyed with app permissions to uncover CVE-2024-44133, using it to access sensitive user data. Adware merchants may have as well.

    • Prison Mike@links.hackliberty.org
      link
      fedilink
      English
      arrow-up
      8
      arrow-down
      1
      ·
      1 month ago

      Is this a joke? Back in my office days I constantly had to switch to Chromium-based browsers to load websites with shit security (TLS 1.0 anyone?). Chrome’s even dumb enough to let you load an <iframe> without checking the content-type.

      (Not hating on Firefox though.)