en

Can You Trust the Browser to Remember Your Passwords? from freemexy's blog

Can You Trust the Browser to Remember Your Passwords?
Nowadays, all types of websites require users to create an account before they can access relevant resources and services. I think most of you have to sign in for some websites every day. Since you are tired of entering the username and password each time you visit a website, you may choose to rely on the browser to save your passwords and automatically log in the next time. And you do not have to remember the password and type it in again and again.

However, have you ever thought that these saved logins might be disclosed?
The browser does not protect your passwords.
With the exception of Firefox, most browsers do not allow you to set a master password for the saved logins. To access the saved passwords, you need to enter the logon password for your operating system. Thus, other software on your computer can access the stored password of your browser without your permission. If you have not set a logon password for your computer, anyone who managed to get physical access to your computer can steal your saved passwords.

Let’s see how I access these saved logins.

Take Google Chrome as an example. Chrome, credited as the most secure browser in many reviews, is not exactly safe. Your accounts and passwords stored on Chrome can also be easily accessed.

Open Google Chrome.

Click on the menu icon on the upper right corner.

Click on “Settings”.

In the “AutoFill” section, click on “Passwords”.

You will see a list of saved passwords.

saved passwords
Tap the eye icon to display passwords (you will be asked to enter the login password for your device if you have one)

When it comes to Firefox, it is also quite similar.

Open Firefox.

Tap the top right of the menu icon.

Tap “Options” and then “Privacy & Security”.

Scroll down to the “Logins and Passwords” section and tap “Saved Logins”.

Click on “Show Passwords” to view the saved passwords. (You will be asked to enter the master password if you have one.)

show passwords
Web trackers can access the saved passwords.
It is possible for web trackers to access your passwords saved by the browser, as there is a security hole in the login manager in almost all common web browsers. They all allow users to save login usernames and passwords for specific sites and automatically fill them for your next visit.

Web trackers can steal users’ personal information by embedding hidden sign-in forms on websites that load tracking scripts.

For example, Internet marketing or data analytics companies may use the hidden sign-in forms to import users’ logins stored on web browsers. The user’s personal information or e-mail address may be misused without his permission.

It also uploads your password.
Except for the above reasons, there is another thing you should also know that some browsers even upload your passwords. For example, many browsers offer password synchronization so you can sign in to your accounts on different computers more easily. Chrome 69 even lets you log in to your browser by default with your Google Account if you’ve signed up for a Google service and sync your password list. As long as your Google Account is compromised, all passwords stored by your browser are compromised.

Malicious plug-ins can obtain your auto-fills.
If you use the browser plug-in of a password manager, you will be prompted to save your password each time you log in. In fact, the plug-in has already read your password and just asks you if you want to save it.

If a malicious plug-in is installed in the browser, it can read the password that the browser automatically enters.

You will rely on the browser to remember passwords.
Users who allow the browser to save passwords for them will become increasingly relied on browsers. And they can easily forget the password security rules, which increases the risk of becoming a victim of data breaches. From a professional point of view, you need to securely store the password for security, create strong passwords, avoid repeated passwords, change passwords regularly, and so on.

How to avoid it?
Create a very strong password for your Windows account. Note that a number of tools can be used to decrypt Windows account passwords. If someone obtains your Windows password, they can also view your password stored in Chrome.

If you often use a browser to save login user names and passwords, you’d better lock the screen when you leave temporarily for something else. In a word, yo protect your data on the computer, you should try to prevent others from accessing your computer without your permission.

Raise your awareness of personal safety. When you are using a public computer, don’t allow the browser to save your password, especially if you are visiting financial or banking websites. If you want to protect your sensitive information, you can open a new private window. If you do not want to use private browsing, you can also protect your personal information by clearing the browsing history.

Protect yourself from any kind of malware. You should always refuse to install software from unknown sources, check and install patches regularly. Malware and fake security tools can also be exploited for malicious purposes.

VPN download
http://www.fastvpnproxy.com/2019/08/29/
http://www.fastvpnproxy.com/2019/08/31/
http://www.buyvpnservices.com/


The Wall

No comments
You need to sign in to comment