Your IT Consultant

Information Technology Blog
by John W. Simek, Vice President of Sensei Enterprises, Inc.

Chrome Users – Beware of Cisco’s WebEx Extension

January 25, 2017

Google researcher Tavis Ormandy has discovered a problem with Cisco's WebEx Chrome extension. He tweeted that "there was a secret URL in WebEx that allowed any website to run arbitrary code." Supposedly, Cisco has patched the problem with version 1.03 of the Chrome extension, although according to the Register, crypto developer Filippo Valsorda says the patch is incomplete. Rather than take a chance, I would suggest just deleting the WebEx extension for now.

E-mail: Phone: 703.359.0700
Digital Forensics/Information Security/Information Technology
http://www.linkedin.com/in/johnsimek
https://amazon.com/author/johnsimek
http://www.senseient.com