New Chrome extension Vulnerability


What’s this? Like, the fourth in recent times? Getting a bit slack, Apple.


Sounds more like a Chrome vulnerability. Looks like Chrome is running a VNC server on the logged in user, and that VNC session would be maintained. Not convinced this is a Mac vulnerability.


Not only that, but it’s a Chrome extension that doesn’t come by default with the app.

Filing this one under “FUD”.


If it’s happening just because of an extension then how isn’t that a Mac vulnerability? It’s bypassing the Mac login protections.


Thanks for posting that article. I’ve uninstalled chrome remote desktop for the time being just as a precaution.