Loading...

Tag trends are in beta. Feedback? Thoughts? Email me at [email protected]

The Karma connection in Chrome Web Store

How insecure is Avast Secure Browser?

Implementing a "Share on Mastodon" button for a blog

A year after the disastrous breach, LastPass has not improved

Can Chrome Sync or Firefox Sync be trusted with sensitive data? (2018)

Chrome Sync privacy is still bad

Another cluster of potentially malicious Chrome extensions

More malicious extensions in Chrome Web Store

How Malicious extensions hide running arbitrary code

Pcvark and their malicious ad blockers

Password strength explained

Converting incoming emails on the fly with OpenSMTPD filters

Password strength explained

Weakening TLS protection, South Korean style

IPinside: Korea’s Mandatory Spyware

TouchEn nxKey: The keylogging anti-keylogger solution

Bitwarden Design Flaw

South Korea’s online security dead end

What’s in a PR statement: LastPass breach explained

Impact of Extension Privileges

Writing my own build system: Coupling gulp concepts with modern JavaScript

Yes, fun browser extensions can have vulnerabilities too

How did LastPass master passwords get compromised?

Data Exfiltration in Keepa Price Tracker for Amazon

Pitfalls of Data Anonymization

Having fun with CSS injection in a browser extension

Are Xiaomi browsers spyware? Yes, they are (2020)

Amazon Assistant lets Amazon track your every move on the web

Anti-fingerprinting extensions tend to make fingerprinting easier

A grim outlook on the future of browser add-ons

More →