The Arc browser that lets you customize websites had a serious vulnerability
Briefly

from Engadget4 months ago
The Arc browser's feature called "Boosts" allows users to customize website appearances but has raised security concerns due to a critical flaw that enables potential exploitation.
Engadgethttps://www.engadget.com/cybersecurity/the-arc-browser-that-lets-you-customize-websites-had-a-serious-vulnerability-133053134.html
The vulnerability stems from the use of Firebase for sharing customizations, allowing attackers to leverage a user's creatorID to push malicious Boosts to targets.
Engadgethttps://www.engadget.com/cybersecurity/the-arc-browser-that-lets-you-customize-websites-had-a-serious-vulnerability-133053134.html
If an attacker alters their creatorID to match that of a target, they can directly push harmful content when a victim visits a customized site.
Engadgethttps://www.engadget.com/cybersecurity/the-arc-browser-that-lets-you-customize-websites-had-a-serious-vulnerability-133053134.html
The Browser Company responded quickly to the reported potential exploit, releasing a security fix within a day of being notified about the issue.
Engadgethttps://www.engadget.com/cybersecurity/the-arc-browser-that-lets-you-customize-websites-had-a-serious-vulnerability-133053134.html
Read at Engadget
#arc-browser #website-customization #security-vulnerability #firebase #cybersecurity
[
|
]