back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 16:33:02 GMT

rebane2001@infosec.exchange — Wed, 20 May 2026 16:33:02 GMT

@Strabisme @cR0w yes, provided you disable js or service workers on the page

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 16:27:02 GMT

shravanrn@infosec.exchange — Wed, 20 May 2026 16:27:02 GMT

@rebane2001 really cool work. Didn't realize this sort of bug class even existed. Hope they up the bounty; this seems worth more than $1000

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 16:14:11 GMT

fuzzyfuzzyfungus@cyberplace.social — Wed, 20 May 2026 16:14:11 GMT

@rebane2001 I hate it; but damn that's clever.

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 16:06:01 GMT

lenni@fosstodon.org — Wed, 20 May 2026 16:06:01 GMT

@rebane2001 @SamantazFox It's on archive.today/.is/.ph. Only go there with a content blocker, you're DDoSing a small blog otherwise: https://gyrovague.com/2026/02/01/archive-today-is-directing-a-ddos-attack-against-my-blog/

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 16:04:39 GMT

rebane2001@infosec.exchange — Wed, 20 May 2026 16:04:39 GMT

@SamantazFox out of curiosity, where? the archive.org captures don't load for me

edit: ty

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 15:43:56 GMT

samantazfox@infosec.exchange — Wed, 20 May 2026 15:43:56 GMT

@rebane2001 Well, too late, it has already been archived :x

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 15:36:36 GMT

ratsnakegames@mastodon.social — Wed, 20 May 2026 15:36:36 GMT

@rebane2001 fucking embarrassing

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 15:34:31 GMT

alesandroortiz@infosec.exchange — Wed, 20 May 2026 15:34:31 GMT

@rebane2001 Nice find! I should have woken up earlier to see the details.

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 15:22:19 GMT

sylvhem@eldritch.cafe — Wed, 20 May 2026 15:22:19 GMT

@rebane2001 Oops.

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 15:21:23 GMT

rebane2001@infosec.exchange — Wed, 20 May 2026 15:21:23 GMT

issue set to private again, hopefully it'll get fixed properly this time

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 15:12:27 GMT

skyr@chaos.social — Wed, 20 May 2026 15:12:27 GMT

@rebane2001 BeEF module ftw!

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 15:08:59 GMT

egerlach@hachyderm.io — Wed, 20 May 2026 15:08:59 GMT

@rebane2001 Clearly, @mozilla's choices around not implementing certain APIs is paying off.

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 14:38:41 GMT

gurkan@has.siktir.in — Wed, 20 May 2026 14:38:41 GMT

@rebane2001 peak google efficiency

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 14:38:26 GMT

utf_7@mastodon.social — Wed, 20 May 2026 14:38:26 GMT

@henry_null @rebane2001

i second this, sent from my epiphany

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 14:06:17 GMT

interpipes@thx.gg — Wed, 20 May 2026 14:06:17 GMT

@rebane2001 ‍️

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 14:04:12 GMT

henry_null@sueden.social — Wed, 20 May 2026 14:04:12 GMT

@EdCates @rebane2001 I mean its them who made it public first I guess https://issues.chromium.org/issues/40062121#comment56

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 14:02:07 GMT

taghunt@infosec.exchange — Wed, 20 May 2026 14:02:07 GMT

@rebane2001 well that's not good...

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 13:59:46 GMT

mirq@tsogol.tsiran.org — Wed, 20 May 2026 13:59:46 GMT

@rebane2001 uh oh
Why did it take them 4 years to (not) fix this?
I really should go ahead and disable js everywhere

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 13:53:30 GMT

rebane2001@infosec.exchange — Wed, 20 May 2026 13:53:30 GMT

@cR0w no

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 13:51:58 GMT

cr0w@infosec.exchange — Wed, 20 May 2026 13:51:58 GMT

@rebane2001 I've got a dumb question: Is this something that can be mitigated with a uBlock filter? It reads like it could be but I don't know this stuff well.

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 13:45:53 GMT

multisn8@mastodon.catgirl.cloud — Wed, 20 May 2026 13:45:53 GMT

@rebane2001 the bot ghost is providing emotional support here

Uh oh! This issue still open and hasn't been updated in the last 262 days. This is a serious vulnerability, and we want to ensure that there's progress. Could you please leave an update with the current status and any potential blockers?

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 13:39:16 GMT

edcates@mastodon.social — Wed, 20 May 2026 13:39:16 GMT

@henry_null @rebane2001 Cue Microsoft issuing a press release accusing Rebane of "violating coordinated vulnerability best practices." They've barely had time to react, after all...

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 13:09:50 GMT

henry_null@sueden.social — Wed, 20 May 2026 13:09:50 GMT

@rebane2001 Is this what they call a 1259 day?

Reply to back in 2022 i found a bug that would let me, with no user interaction, turn any chromium-based browser into a permanent js botnet member on Wed, 20 May 2026 12:47:41 GMT

4censord@unfug.social — Wed, 20 May 2026 12:47:41 GMT

@rebane2001 @natty they are very similar afaik, mostly branding because Germany has another established thing called "focus"

But I'll retry in fennec in a sec