← LibraryTechnique entry
BX-EXT-PERM-ABUSEPrivilege Escalation
Over-Permissioned Extension
Legit extension with cookies + history + downloads perms is later updated by attacker (after maintainer takeover / sale) — instant fleet-wide compromise.
§ Where this technique fits
BX-EXT-PERM-ABUSE is catalogued under the Privilege Escalation tactic of the offensive-security kill-chain. It appears in 0 approved dossiers in the registry, typically.