MellowTel is dangerous as it leads users to unknown sites, demanding trust in its security assessments. Such trust is precarious since the reliability of sites can waver. This presents a particular danger for enterprise networks that enforce strict controls over code execution and web access. Previous findings reveal browser extensions capable of collecting extensive personal data, including sensitive documents and private information. Current investigations into affected extensions show a reduction in active options across major browsers, indicating ongoing security vulnerabilities in browser integrations.
MellowTel poses significant risks as it operates unverified sites, requiring users to trust its judgment on security and site trustworthiness, which can rapidly change.
The discovery by Tuckner resembles a 2019 incident where browser extensions on 4 million browsers harvested sensitive data, impacting personal and corporate privacy.
The data compromise from prior extensions included personal surveillance videos, tax returns, and proprietary information from major companies, posing serious security concerns.
Out of 45 Chrome extensions examined, 12 became inactive due to malware or library removal, showing ongoing risks associated with these tools.
Collection
[
|
...
]