mention sandboxing

privacyguides · Apr 16, 2024 · 3c5b263 · 3c5b263
1 parent a7b1b24
commit 3c5b263
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/docs/mobile-browsers.md b/docs/mobile-browsers.md
@@ -153,12 +153,12 @@ Brave allows you to select additional content filters within the internal `brave
 <div class="admonition danger" markdown>
 <p class="admonition-title">Danger</p>
 
-Firefox (Gecko)-based browsers on Android [lack](https://bugzilla.mozilla.org/show_bug.cgi?id=1610822) [site isolation](https://wiki.mozilla.org/Project_Fission),[^1] a powerful security feature that offers additional protection against a malicious website exploiting a security vulnerability.[^2] Chromium-based browsers like [Brave](#brave) will provide more robust protection against malicious websites.
+Firefox (Gecko)-based browsers on Android [lack](https://bugzilla.mozilla.org/show_bug.cgi?id=1610822) [site isolation](https://wiki.mozilla.org/Project_Fission),[^1] a powerful security feature that protects against a malicious site performing a [Spectre](https://en.wikipedia.org/wiki/Spectre_(security_vulnerability))-like attack to gain access to the memory of another website you have open.[^2] Chromium-based browsers like [Brave](#brave) will provide more robust protection against malicious websites.
 
 </div>
 
 [^1]: This should not be mistaken for [state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning) (or dynamic [first party isolation](https://2019.www.torproject.org/projects/torbrowser/design/#identifier-linkability)), where website data such as cookies and cache is restricted so that a third-party embedded in one top-level site cannot access data stored under another top-level site. This is an important privacy feature to prevent cross-site tracking and **is** supported by Firefox on Android.
-[^2]: GeckoView also [does not](https://bugzilla.mozilla.org/show_bug.cgi?id=1565196) take advantage of Android's [isolatedProcess](https://developer.android.com/guide/topics/manifest/service-element#isolated) flag, an Android feature which allows an app to safely run less trusted code in a separate process that has no permissions of its own.
+[^2]: GeckoView also [does not](https://bugzilla.mozilla.org/show_bug.cgi?id=1565196) take advantage of Android's native process sandboxing by using the [isolatedProcess](https://developer.android.com/guide/topics/manifest/service-element#isolated) flag, which normally allows an app to safely run less trusted code in a separate process that has no permissions of its own.
 
 Enable DivestOS's [F-Droid Repo](https://divestos.org/fdroid/official) to receive updates directly from the developer. Downloading Mull from the default F-Droid repo will mean your updates could be delayed by a few days or longer.