There is no question that the web browser will be the piece of software with the largest and the most exposed attack surface on your Linux workstation. It is a tool written specifically to download and execute untrusted, frequently hostile code.
It attempts to shield you from this danger by employing multiple mechanisms such as sandboxes and code sanitization, but they have all been previously defeated on multiple occasions. System administrators should learn to approach browsing websites as the most insecure activity you’ll engage in on any given day.
There are several ways you can reduce the impact of a compromised browser, but the truly effective ways will require significant changes in the way you operate your workstation. more
Firejail 
Interesting article, indeed, however I got an impression that it suggests jailing a “trusted” browser (firefox), while it actually makes sense to jail a browser you’re using to visit untrusted sites (Chrome)
LikeLike
Always sandbox the browser, regardless what you are using it for. Both Firefox and Chrome are supported.
LikeLike
Hi, Very good article.Thanks for sharing useful tips. I must appreciate you for providing such a valuable content for us. Provided exact and very useful information about the Linux.
LikeLike