[tor-talk] web browser add-on extensions vulnerabilities
jb
jb.1234abcd at gmail.com
Sun Apr 10 10:36:15 UTC 2016
Tor Browser users:
NoScript and other popular Firefox add-ons open millions to new attack
http://arstechnica.com/security/2016/04/noscript-and-other-popular-firefox-add-ons-open-millions-to-new-attack/
TB supplies default extensions, from which two are TB project's own and should
be subjected to an extension review process like those vetted by Mozilla.
The researchers provide a CROSSFIRE tool to analyze them.
Google search:
CrossFire: An Analysis of Firefox Extension-Reuse
Of course, one more reason to be careful about using add-ons in TB.
jb
More information about the tor-talk
mailing list