What was the problem with the Adobe extension, and what should users do about it.
Chrome Extension Adobe Software Vendors NowHowever, many users can be lax about ensuring they have the latest security patches installed, which is why most software vendors now push patches to users machines automatically.![]() Chrome Extension Adobe Update For AdobeThe update for Adobe Acrobat Reader DC, released on Jan. Adobe Acrobat Chrome extension on users Windows PCs. Users had no option to block the installation, and it was not mentioned in the change log. ![]() Chromes security mechanisms block extensions from being enabled automatically, and so prompted users to either grant the Adobe Acrobat Chrome extension permission to access data on sites they visit, communicate with cooperating native applications and manage downloads, or to remove it from the browser. As the Enable option was set by default, that is probably what most people chose. Once enabled, the extension exposed users to a potential XSS attack. Software vendors should certainly not use security updates to install undocumented new features without the users permission. Dont just click Enable because it has been highlighted by default.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
December 2020
Categories |