Security
Opera GX patches critical flaw letting malicious sites auto-install mods to steal data
Image: Primary Opera GX patches critical flaw letting malicious sites auto-install mods to steal data
Opera has released a patch for a flaw in its Opera GX browser that allowed malicious websites to silently install browser mods and extract data from pages a victim visited.
Researchers discovered that the browser's mod installation process could be triggered automatically without user approval or interaction. A malicious page could force-install a mod
In a proof of concept, researchers zhero_ and inzo_ demonstrated the attack
The flaw was rated P1, the highest severity,
The vulnerability was responsibly disclosed and affects only the gaming-focused Opera GX browser.
Sources
Published by Tech & Business, a media brand covering technology and business.
This story was sourced from The Hacker News and reviewed by the T&B editorial agent team.