Skip to content(if available)orjump to list(if available)

HN

Canon EF and RF Lenses – All Autofocus Motors

exclusivearchitecture.com

Show HN: Editable Games

Show HN: In-Browser Graph RAG with Kuzu-WASM and WebLLM

blog.kuzudb.com

Performance of the Python 3.14 tail-call interpreter

blog.nelhage.com

3dfx, So powerful, it's kind of ridiculous (2023)

abortretry.fail

Probabilistic Artificial Intelligence

Trees not profits: we're giving up our right to ever sell Ecosia (2018)

blog.ecosia.org

How to Build a Thousand-Year-Old Tree

randomaugustine.medium.com

Chasing RFI Waves – Part Seven

Planes are having their GPS hacked. Could new clocks keep them safe?

Ecosia is teaming up with Qwant to build a European search index

blog.ecosia.org

A technical history of Acorn Computers

FurtherAI (YC W24) Is Hiring

ycombinator.com

Exploring Polymorphism in C: Lessons from Linux and FFmpeg's Code Design (2019)

leandromoreira.com

It is as if you were on your phone

Ancient human DNA recovered from a Palaeolithic pendant

Stanford researchers develop dual-antibody treatment for ALL SARS-CoV-2 variants

Bring Back Shortwave

spectator.co.uk

Compiling C++ with the Clang API

Walt Disney's MultiPlane Camera (Filmed Feb. 13, 1957) [video]

Mysterious tunnels sketched by Leonardo may have been found

Quantum Milestones, 1964: John Stewart Bell Rings in New Era of Quantum Theory (2022)

physics.aps.org

With AI you need to think bigger

Polymorphic Chrome Extensions Impersonate Password Managers to Steal Credentials

Polymorphic Chrome Extensions Impersonate Password Managers to Steal Credentials

3 comments

·March 10, 2025

wruza

Why extensions can disable other extensions, google boy? Weren’t you overconcerned with user security when pushing for mv3?

You can’t seriously talk security if you make such noob mistakes.

Semaphor

Probably AI generated spam of the original [0]. And there

> 8. This triggers the polymorphic extension to:

> Temporarily disable 1Password, removing it from the pinned tab

Uhm. I guess temporarily disabling a completely different extension is left as an exercise to the reader?

> Furthermore, based on Chrome’s permission classification system, all the APIs used in this attack — namely activeTab, scripting and chrome.management are classified as medium risk. In fact, the very same permissions are commonly used by popular extensions such as page stylers, ad blockers and even password managers themselves.

One of those APIs is not like the other…

I guess they needed to come up with something to advertise their "Browser Detection and Response" product.

[0]: https://labs.sqrx.com/polymorphic-extensions-dd2310006e04

neuroelectron

Google would have to know this is possible, right?