Exploiting Vulnerabilities in Web Extensions

This chapter examines the vulnerabilities present in the Fromium platform, focusing particularly on private APIs within web applications like the Chrome Store. It discusses a zero-day vulnerability discovered in the Opera browser linked to customizable extensions, emphasizing how malicious code can be injected through clever coding techniques. The chapter concludes by showcasing a deceptive extension called 'Puppies' that illustrates how such vulnerabilities can be exploited under the guise of harmlessness.

Transcript

Play full episode

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

No 1 podcast app

Steven

App Store

I tried everything and snipd is the no 1 app for podcasts if you like to remember things. Just tap your headphones three times and a snipped is created, transcribed, and saved to you library.

The game changer for learning from podcasts!

Nelson

App Store

I used to use a different app that was able to save excerpts from podcast and really enjoyed it. I could listen to the podcast and quickly save things that I wanted to come back to later. Snipd take this to a whole new level with AI integration, creating summaries of podcasts and summarizing the main takeaways from what I’ve saved and snipped. I really love how it helps me prioritize what podcast to listen to with it summaries & deep dives.