pull down to refresh

68 sats \ 5 replies \ @SimpleStacker 21 Aug \ on: Zero-Day Clickjacking Flaws Found in Password Managers Used by Millions security
Interesting, but is this really a weakness of the password managers? It seems like it works by tricking you into clicking an autofill---but you're still on a malicious website, you still have to click the submit button (I think?)
write
preview
23 sats \ 3 replies \ @WeAreAllSatoshi 21 Aug
If the password manager browser extensions can protect against the issue, I feel like they should. Whether it’s their fault or not, given their role, they should do everything in their power to prevent such issues. Just my 2 sats
reply
61 sats \ 1 reply \ @SimpleStacker 21 Aug
I agree. I was just coming at it from the perspective of "am I in danger?"
reply
0 sats \ 0 replies \ @WeAreAllSatoshi 21 Aug
I get you now.
reply
50 sats \ 0 replies \ @RideandSmile OP 21 Aug
indeed, it s their job (security)
reply
7 sats \ 0 replies \ @RideandSmile OP 21 Aug
Yes, i understand also like that :
΅Critically, only a single click such as accepting a cookie banner or closing a pop-up can be enough to leak sensitive information like login credentials, stored 2FA codes, passkeys, and even credit card numbers or personal addresses.¨
reply