Have you never seen a native app's auto-update get hijacked by malware? It happe... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		streetfighter64 33 days ago \| parent \| context \| favorite \| on: Wikipedia was in read-only mode following mass adm... Have you never seen a native app's auto-update get hijacked by malware? It happened (yet again) last month [0] Tons of native apps also have plugins or addons, which (surprise surprise) is just code downloaded from some central repo, and run with way less sandboxing than JS. [0] https://www.bleepingcomputer.com/news/security/notepad-plus-...

Dylan16807 33 days ago [–]

That's pretty far from hosting the program in the same spot the content it manages is hosted, and also installing fresh versions instantly.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact