Vulnerability in Yandex Browser Allows Attackers to Steal Victims’ Browsing Data
Vulnerability is easy to exploit, hard to spot. A CSRF vulnerability existed in the core of the Yandex Browser that allowed attackers to trick the browser’s synchronization feature into sending the user’s browsing data to the wrong account. If exploited, the vulnerability would have allowed an attacker to steal the victim’s passwords, browser history, bookmarks, and […]