Security Flaw in Google Chrome Reveals Stored Passwords in Plain-Text

Security Flaw in Google Chrome Reveals Stored Passwords in Plain-Text

Posted by · 11142 views · Translate

Google Chrome's password storing policy is under fire today, as the Guardian noted how any stored/saved password form Google Chrome can easily be viewed on the computer as plain text.

A serious flaw in the security of Google's Chrome browser lets anyone with access to a user's computer see all the passwords stored for email, social media and other sites, directly from the settings panel. No password is needed to view them.

Besides personal accounts, sensitive company login details would be compromised if someone who used Chrome left their computer unattended with the screen active.

You can actually see the passwords by selecting Settings, then clicking Show Advance Settings, then under Password and forms, click Manage saved passwords. Passwords are initially hidden but by simply clicking the Show button, you can see all passwords in plaintext.

For instance, if a friend was using your computer and you stepped away for a few minutes, he could easily access all of your passwords that you use (if saved).

The head of Google's Chrome developer team, Justin Schuh, said he was aware of the weakness and that there were no plans to change the system. Firefox had this similar issue when it went under fire for its password storage policy, but it added a master password option to further enhance security.

Read More

Security Flaw in Google Chrome Reveals Stored Passwords in Plain-Text

Pete - August 9, 2013 at 8:28am
If you login to your bank website, then wander off to get a cuppa, someone could steal all your money!! Out of all of you moaning about this quite valid feature, how many of you are actually that security concious to bother locking your computer when you go away from your desk? BTW - Chrome isn't STORING your password in plain text AFAIK, it just lets you view them if you've got a valid login. Scaremongering idiots.
Hi Everybody! - August 8, 2013 at 3:47am
Please write a new article about how both Chrome and FireFox have this same issue. Firefox/tools/options/security/saved passwords Click the saved passwords button. The next window gives you the option "Show Passwords"
Termus - August 8, 2013 at 2:37am
You idiots! Chrome was always like this ,if you don't like you can always Fu*k off , I use the way it is without all that ten ton security shit it's better then "master password" wow so lame
Simon - August 8, 2013 at 2:29am
What? You mean google's software isn't secure? No way!!!
Aik - August 7, 2013 at 8:09pm
It's been that way for a long time
8 More Comments