ShellCodeX
Tools • Events • News • Insights
ShellCodeX Intelligence Brief
HIGH Cybersecurity

Opera GX flaw lets websites auto-install an add-on to steal page data

Source headline: Opera GX Flaw Let Malicious Sites Auto-Install Mods to Steal Data From Visited Pages

Threat level High
Signal strength 75/100
Source confidence 1 source
Published 1 week ago

Intelligence Summary

Security researchers disclosed a vulnerability affecting Opera GX, Opera’s gaming-focused browser. The flaw could allow a malicious site to silently install a browser add-on without user interaction. The add-on could then extract sensitive, targeted data from pages the victim visits. A proof of concept demonstrated reconstructing a signed-in user’s full Gmail address from a single page visit. Opera has released a patch, and users should update to the latest version to mitigate the risk.

Recommended Action

Review affected assets, schedule urgent remediation, and monitor related indicators.

Topics

#patch-update #data-theft #autoinstall #browser-addons #operagx
Original reporting The Hacker News Opera GX Flaw Let Malicious Sites Auto-Install Mods to Steal Data From Visited Pages
Open original source