• originalucifer@moist.catsweat.com
    link
    fedilink
    arrow-up
    115
    arrow-down
    2
    ·
    1 year ago

    on Chromium they should state. its a combo of GPU and the app failing to isolate cross-domain data… leaking it.

    Firefox is not vulnerable… just chrome/edge, etc.

      • themoonisacheese@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        20
        ·
        1 year ago

        Yes, but while electron apps are technically vulnerable, they tighly control what sites you visit and they do not hold session cookies for non-public info to be stolen.

      • dust_accelerator
        link
        fedilink
        English
        arrow-up
        11
        ·
        1 year ago

        While true, that’s not the message here. While chromium is in a lot of things, browsers for everyday use (like banking etc.) is a huge part. You can’t control what services you rely on use as a basis for their software, but you can absolutely not use the software and/or opt for the website instead.

        If you can reduce your exposure to that vulnerability by a large fraction by simply switching browsers with equivalent experience, it should absolutely be mentioned. In fact, it could even be seen as an obligation/core purpose of news outlets.