Skip to content
/ F-Secure-KEY-audit Public

This repository contains the security report of the F-Secure KEY app and its extension.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

tomasko126/F-Secure-KEY-audit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
.gitattributes
.gitattributes
 
 
README.md
README.md
 
 
evil-script.js
evil-script.js
 
 
security-report.md
security-report.md
 
 

Repository files navigation

F-Secure KEY security audit

All found security bugs described in the security-report.md whitepaper have been reported to the vendor and fixed as of 10/25/2017.

The evil-script.js contains the evil code, which exploits the F-Secure KEY browser extension and tries to retrieve user's stored usernames and passwords.

The appropriate security advisory has been released by the vendor as well:
https://www.f-secure.com/en/business/support-and-downloads/security-advisories/fsc-2017-2

About

This repository contains the security report of the F-Secure KEY app and its extension.

Topics

chrome-extension security-audit f-secure

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages