Is there a danger of traffic interception when working through Frigate or Browsec?

A

Alexander2016-11-13 12:44:51

Encryption

Alexander, 2016-11-13 12:44:51

I forgot to disable the Browsec extension and used Sberbank online. And I also thought that somehow everything is working slowly. Everything was over HTTPS and with a green padlock and a green bank name in the address bar.
I'm worried, maybe now Browsec knows my logins / passwords? Maybe Man-in-the-middle?
How does work work through such extensions in general?

Reply

Answer the question

In order to leave comments, you need to log in

1 answer(s)

S

SagePtr, 2016-11-13
@Survtur

If next to the lock was the name of the organization for which the certificate was issued, then MITM is impossible, this certificate is carefully checked. Unless, of course, the organization issuing EV certificates is not compromised, but everything is checked much more strictly there than for ordinary ones.
And about the possibility of theft - if a browser extension can embed content scripts into the page, then it will be able to steal anything, but not through MITM, but in other ways.