Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Yes, it does. An MITM attacker can deliver malicious code to you which runs in the website context, and can exploit any bugs in your browser's javascript engine.


Sounds like you have a bigger problem if your browser isn't properly sandboxed.


ISPs previously did this. Not JS exploits, but they injected ads into HTTP web pages. Really popular ISPs, on the level of Comcast.


Sounds like FUD




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: