From Krebs on Security:
If you’re the type of person who uses multiple extensions, it may be wise to adopt a risk-based approach going forward. Given the high stakes that typically come with installing an extension, consider carefully whether having the extension is truly worth it. This applies equally to plug-ins designed for Web site content management systems like WordPress and Joomla.
The only extensions I use these days is an ad blocker (1blocker), add to instapaper, 1password and a rss subscribe button. Most everything else gives me the creeps when you read what it actually needs access to.
ZDNet, reporting on how Hackers can remotely steal fingerprints from Android phones:
The threat is for now confined mostly to Android devices that have fingerprint sensors, such as Samsung, Huawei, and HTC devices, which by volume remains low compared to iPhone shipments. But down the line by 2019, where it’s believed that at least half of all smartphone shipments will have a fingerprint sensor, the threat deepens.
The researchers did not comment on which vendor is more secure than others. But, Zhang noted that Apple’s iPhone, which pioneered the modern fingerprint sensor, is “quite secure,” as it encrypts fingerprint data from the scanner.
The scary thing is that this isn’t exactly the sort of password you can change if things go wrong.