Security Flaw in Google Chrome Reveals Stored Passwords in Plain-Text
Google Chrome's password storing policy is under fire today, as the Guardian noted how any stored/saved password form Google Chrome can easily be viewed on the computer as plain text.
A serious flaw in the security of Google's Chrome browser lets anyone with access to a user's computer see all the passwords stored for email, social media and other sites, directly from the settings panel. No password is needed to view them.
Besides personal accounts, sensitive company login details would be compromised if someone who used Chrome left their computer unattended with the screen active.
You can actually see the passwords by selecting Settings, then clicking Show Advance Settings, then under Password and forms, click Manage saved passwords. Passwords are initially hidden but by simply clicking the Show button, you can see all passwords in plaintext.
For instance, if a friend was using your computer and you stepped away for a few minutes, he could easily access all of your passwords that you use (if saved).
The head of Google's Chrome developer team, Justin Schuh, said he was aware of the weakness and that there were no plans to change the system. Firefox had this similar issue when it went under fire for its password storage policy, but it added a master password option to further enhance security.