If the compromising stuff isn't on banana_split but in a browser extension, or anywhere else on the host OS, it can store sensitive data and send them later when the computer is back online.
If the user reboot on a live OS, download banana_split, go offline, do it stuff, then shutdown it computer, and only then put it back online, it looks really harder to stole any secrets.
If the compromising stuff isn't on banana_split but in a browser extension, or anywhere else on the host OS, it can store sensitive data and send them later when the computer is back online.
If the user reboot on a live OS, download banana_split, go offline, do it stuff, then shutdown it computer, and only then put it back online, it looks really harder to stole any secrets.