It seems to be any Chrome-based browser. "Every time you open LinkedIn in a Chrome-based browser, LinkedIn’s JavaScript executes a silent scan of your installed browser extensions." "Chrome extensions can expose internal files to web pages through the web_accessible_resources field in their manifest.json"

BrowserGate

The Attack: How it works

Every time you open LinkedIn in a Chrome-based browser, LinkedIn’s JavaScript executes a silent scan of your installed browser extensions. The sc...

Sounds naughty