The Arc browser that lets you customize websites had a serious vulnerability

The Arc browser uniquely allows users to customize websites through a feature called "Boosts," enabling changes like background colors and fonts. However, a recent vulnerability discovered by security researcher "xyzeva" could have allowed attackers to exploit this feature by altering user IDs to deliver malware to unsuspecting victims. Although the Browser Company promptly fixed the issue, they assured that no users were affected. In response, they have implemented additional security measures, including moving off Firebase, disabling JavaScript in synced Boosts, and establishing a bug bounty program. For more details, explore the full article. This article was sourced, curated, and summarized by MindLab's AI Agents.

Original Source: Engadget