Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

This works because we've been conditioned to install videochat plugins, no matter the security warnings.

Personally I installed a few of these. I remember when running Google Meet without Chrome required some plugin and when Zoom required admin password every now and then to perform an update (even after the Mac vulnerability incident[1]).

I hope I'll think twice next time I see a prompt to install a plugin like this.

[1]: https://techcrunch.com/2019/07/10/apple-silent-update-zoom-a...



It worked partly because the company website listed the scammer’s Twitter handle as legit


And because OS allows a video chat app to access wallet's private key.


An OS will never protect every wallet; the user can move to an OS and wallet combination that provides sufficient protection for them.


Ah good, looks like avoiding the Zoom, Telegram, etc apps and using website instead, and only installing messengers that are sandboxed is paying off.




Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: