Chrome and Firefox have a lot of extensions, some of which are very useful. When you install them, they say they need access to all of the user's web page data.:
(1) Is this a threat to online passwords used on banking sites etc ?
(2) If the website is using HTTPS, then what kind of data is available to the extension, since the login credentials would be encrypted.
(3) Do pop-up/ad windows have browser extensions loaded into them? Many banking sites use these reduced browser windows since they are independent of the main window, and don't have forward and back buttons so their design can prevent the user from interacting with the flow of interaction.
(4) Is it a good idea to keep one browser (like Iron, Chromium or Comodo Dragon) clean and extension-free just for e-banking and online shopping ?
Should add that I'm not very familiar with how exactly the extensions/add-ons get loaded into the browser, and how they work or are developed - so a brief explanation on that too would be nice. Thanks.