http://us.generation-nt.com/chrome-os-operating-system-flaw-hack-extension-news-3064351.html
Through a cross-site scripting attack and the injection of code into a Web page executed by the browser, Matt Johansen and Kyle Osborn have managed to demonstrate the possibility of accessing user names, passwords and users banking information.
The potential threat comes from Chrome OS extensions.
