MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
privacy
Search

Chrome extension privacy promises undone by hardcoded secrets, leaky HTTP

Monday June 9, 2025. 02:26 PM , from ComputerWorld
Seemingly harmless Chrome extensions aimed at improving browser privacy and analytics could be inadvertently leaking API keys, secrets, and other sensitive machine information.  

According to a Symantec research, several widely used Chrome extensions, including DualSafe Password Manager and Avast Online Security & Privacy extension, are exposing information either through insecure HTTP transmission or hardcoded leaks.  
Read more at ComputerWorld
https://www.csoonline.com/article/4003545/chrome-extension-privacy-promises-undone-by-hardcoded-secr...

Related News

privacy Washington Post's Privacy Tip: Stop Using Chrome, Delete Meta's Apps (and Yandex) SlashdotJun 7
chrome Google Chrome Smashes Speedometer 3 Record With Massive Performance Gains SlashdotJun 5
secrets Google Chrome smashes Speedometer 3 record with massive performance gains BetaNewsJun 5
hardcoded JavaScript promises: 4 gotchas and how to avoid them InfoWorldJun 4
http Google patches third zero-day flaw in Chrome this year ComputerWorldJun 4
extension Google quietly pushes emergency fix for Chrome 0-day as exploit runs wild TheRegisterJun 3
information Workday promises to grow workforce slowly and differently after shedding 1,750 jobs TheRegisterJun 3
undone 3 cloud migration secrets InfoWorldJun 3
extensions Gen V season 2 promises more gore and MCU-style connections in new teaser trailer BoingBoingJun 2
promises Why data privacy is a fundamental human right BetaNewsMay 30
leaky Meet the extreme privacy experts who help wealthy clients disappear BoingBoingMay 29
privacy "19 Years of Broken Promises": Wired examines Elon Musk's track record BoingBoingMay 27
chrome Smart devices are watching: How to protect your privacy in a connected home BoingBoingMay 27
secrets The Privacy-Friendly Tech to Replace Your US-Based Email, Browser, and Search Wired: Tech.May 27
hardcoded There’s a Very Simple Pattern to Elon Musk’s Broken Promises Wired: Tech.May 27
http Ask Slashdot: Do We Need Opt-Out-By-Default Privacy Laws? SlashdotMay 24
extension Disney unveils first look at Zootopia 2, promises November release BoingBoingMay 23
information Irish privacy watchdog OKs Meta to train AI on EU folks' posts TheRegisterMay 22
undone Big tech's privacy paradox: Why regulatory alignment is now a technical imperative BetaNewsMay 22
extensions Sergey Brin promises next generation of Glassholes will be much less conspicuous TheRegisterMay 21
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Current Date
Jun, Tue 10 - 06:46 CEST