RB2: OWASP Day podcast: Exploiting Firefox extensions
In this special interview you'll hear our New Zealand correspondent Paul Craig interviewing Security-Assessment.com's Roberto Suggi Liverani and Nick Freeman discuss their research into exploiting Firefox extensions.
These guys were doing a review of a large web application and evaluation of a related firefox extension was in scope.
Skype extensions, search toolbars -- all those extensions that people routinely install into their browsers, well, it turns out a lot of them are buggy as hell and these two have figured out how to exploit these little suckers, and at best guess, there's around 30 million boxes out there vulnerable to the extension bugs they've identified.
PLUS: All the latest on the Manch-urine candidate...5 days 16 hours ago
Didn't miss much while I was away, apparently. Lol.5 days 17 hours ago
The last episode for 2016. Back on January 12, 2017!7 weeks 4 days ago
The 2016 season of Risky Business goes out on some potentially massive news...7 weeks 4 days ago
Fitbit's security director, engineer join the show...8 weeks 4 days ago