5 comments

[ 3.1 ms ] story [ 15.7 ms ] thread
But then you link right to his site to give him more ad revenue. That wasn't the best idea considering the problem.
What was the problem? The page is too busy to see what's new.
They released an update to allow adblock users to see adds on their site enabled by default.
He did this by including obfuscated code that modified the internal state of Adblock Plus without notifying the user.
"now I realize that the general security of the Mozilla extensibility system is being questioned because of this incident. Believe me: I didn’t even considered such a fallout as a remote risk."

I would consider that a positive thing. His hack didn't make Mozilla any less secure, it just exposed an existing insecurity.