|
|
|
|
|
|
by Calavar
1060 days ago
|
|
|
You leave Javascript enabled, open 15 tabs, and in all likelihood 2 or 3 of them are discreetly running cryptominers, another 2 or 3 are using the timed visited links attack to sniff your browser history [1], another 4 or 5 are installing permacookies, and Google and Meta and Twitter are now aware of 12 out of the 15 tabs you opened because those pages have a Google analytics or AdSense JS snippet or a like/retweet button somewhere on the page. Javascript is a security and privacy nightmare. It's frankly absurd to me that we default to Javascript switched on everywhere for everything. It feels like chmodding your entire home directory to 777 on a shared system. JS is also an accessibility nightmare, but unfortunately turning it off doesn't fix that. [1] https://bugs.chromium.org/p/chromium/issues/detail?id=252165 |
|
|
I do pretty aggressively utilize ad blocking, so maybe that’s helping out.
Where are you seeing crypto-mining js malware regularly being loaded?