> Therefore, it is not unreasonable to assume that this key has been > compromised.
So it means that any private keys generated on that website could be compromised: - If any third-party JS were compromised (and we know how insecure js-based ads are - last time it was a crypto miner on youtube)
- If they were stored on the compromised server - If a trojan were installed on the compromised server - If somebody MitM the server Or am I missing something ? _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
