This article has been rated as Low-importance on the project's importance scale.
I think the article needs more detail on countermeasures, particularly secure browsers and ways that all existing browsers can be made more secure, since this is essential if internet commerce is to continue.
For example the code required to execute the secure transaction could be installed as root and the browser run under user privileges only, so that installed extensions cannot alter the root-level code. The secure portion of the code could then verify that extensions don't have root access. Without some partitioning between secure and insecure code a solution does not seem feasible. — Preceding unsigned comment added by Danwoodard (talk • contribs) 14:14, 8 October 2012 (UTC)