Web Hosting

It’s always fun to see how tough an Operating System is when the experts get a chance to throw stones at it.

A pair of experts (WhiteHat security researchers Matt Johansen and Kyle Osborn) have discovered a way to hack into Chrome OS.

They say that Google’s vet-free app approval process leaves its Chrome Web Store susceptible to malicious extensions.

Using a cross-site scripting injection, Johansen and Osborn were able to steal a user’s contacts and cookies, which could give hackers access to other accounts, including Gmail.

Web Hosting

Google quickly patched the hole after WhiteHat uncovered it earlier this year, but researchers told Black Hat’s attendees that they’ve discovered similar vulnerabilities in other extensions, as well.

You can be sure that as soon as Windows 8 Beta is released, there will be throngs of both Blackhats and Whitehats looking for vulnerabilities within the OS.

How secure do you guys think Windows 8 will be?


Web Hosting
About the Author

Onuora Amobi is the Founder and VP of Digital Marketing at Learn About The Web Inc. Onuora has more than a decade of information security, project management and management consulting experience. He has specialized in the management and deployment of large scale ERP client/server systems.

In addition to being a former Microsoft MVP and the founder and editor of EyeOnWindows.com, he is the CEO of a Pasadena based online marketing education startup - Learn About The Web Inc. (www.learnabouttheweb.com) and The Redmond Cloud (https://www.theredmondcloud.com).

Related Posts

One of more interesting features that Microsoft is working on for Windows 10 is the cloud...

A picture that reveals that 1.24% of Surface owners are already using the Surface Go....

Mark your calendars, folks! Microsoft, at its briefing at the IFA 2017 conference today,...

  1. I’ve used Chrome OS and I am not surprised. It seems inherently insecure…

  2. It will deserve right to Google and teach them that security is not only in the mouth and in theory.
    Security requires a lot of work and experience and not some kind of unproved theorical knowledge without any kind of real experience.
    In all case the idea of Chrome O.s itself is stupid.
    It would have been more interesting to have an O.S which correctly worked offline with some useful applications and which enabled web apps to be executed out of the browser. Because having the browser as the only U.I and requiring a web connection to be able to do anything is not only boring but very limitative.
    Anyway, i hope that Google will learn its lesson.
    The world is not ready yet for a cloud only based computing experience.
    And it will not be for the upcoming years.

Leave a Reply