When a Browser Add-On Crosses the Line Into Host Control

A malicious Edge extension linked to a Python backdoor shows how native messaging can turn a browser convenience feature into a bridge toward endpoint-level abuse.