Google security lapse uncovered by Kiwi developer

Forum Moderators: open

Message Too Old, No Replies

Google security lapse uncovered by Kiwi developer

Password stored by browser can be shown

Dijkgraaf

4:11 am on Aug 9, 2013 (gmt 0)

A security flaw in Google's Chrome web browser, which lets anyone with access to a user's computer see all their stored passwords, has been discovered by a Kiwi software developer.

[nzherald.co.nz ]

Should they have a Master Password like Firefox?

graeme_p

4:58 am on Aug 9, 2013 (gmt 0)

I agree with Google: if you let someone log in as you, they are supposed to have access to all your information.

bill

8:55 am on Aug 10, 2013 (gmt 0)

The lack of a master password is apparently intentional. They don't want to give users a false sense of security. You shouldn't be storing passwords in your browser IMHO.

graeme_p

9:38 am on Aug 10, 2013 (gmt 0)

Not important passwords anyway. I would never store a bank password in the browser, but a site that requires registration to read is fine.

Dijkgraaf

1:51 am on Aug 12, 2013 (gmt 0)

Computerworld - Google should lock up Chrome passwords with a master key to make casual thieves work harder, a security expert said Thursday.

More at [computerworld.com...]