Browser synchronization abuse: Bookmarks as a covert data exfiltration channel

Two universal and seemingly innocuous browser features – the ability to create bookmarks (aka “favorites”) and browser synchronization – make users’ lives easier, but may also allow hackers to establish a covert data exfiltration channel. Data exfiltration via bookmarks Malicious browser extensions are a known and widespread threat, used by attackers to perform actions such as stealing passwords, exfitrating email data or delivering additional malware. Some attackers have also recently managed to exploit Chrome’s syncing … More →

The post …

abuse bookmarks brave browser channel chrome covert data data exfiltration data protection data theft don't miss enterprise exfiltration features hot stuff microsoft edge opera research sans