Opera GX flaw lets websites auto-install an add-on to steal page data
Source headline: Opera GX Flaw Let Malicious Sites Auto-Install Mods to Steal Data From Visited Pages
Intelligence Summary
Security researchers disclosed a vulnerability affecting Opera GX, Opera’s gaming-focused browser. The flaw could allow a malicious site to silently install a browser add-on without user interaction. The add-on could then extract sensitive, targeted data from pages the victim visits. A proof of concept demonstrated reconstructing a signed-in user’s full Gmail address from a single page visit. Opera has released a patch, and users should update to the latest version to mitigate the risk.
Recommended Action
Review affected assets, schedule urgent remediation, and monitor related indicators.