> Just wait until your bank disables password autofill and paste on their site, ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Barrin92 on July 4, 2023 \| parent \| context \| favorite \| on: Mozilla restricts extensions on some domains on Fi... > Just wait until your bank disables password autofill and paste on their site, and no extension can override it that would be a fantastic day because autofill based on html/js hackery by extensions is one of the biggest security risks there is. It's why Extensions like Bitwarden caution you to have autofill turned on. Tavis Ormandy (security researcher) demonstrated this last year in a blog post https://lock.cmpxchg8b.com/passmgrs.html

lapcat on July 4, 2023 [–]

> autofill based on html/js hackery by extensions is one of the biggest security risks there is

I think you misunderstood. I was talking about sites disabling built-in browser features.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact