New
#1
Despite the privacy issue being google and all that, chrome has done more for security, standards and a overall better web then any other web browser.
Chrome 80 update cripples top cybercrime marketplace | ZDNetA small change in the Google Chrome 80 browser has had a devastating effect on one of today's top cybercrime marketplaces.
According to new research shared with ZDNet this week by threat intelligence firm KELA, the Genesis Store is currently going through a rough patch, seeing a 35% drop in the number of hacked credentials sold on the site.
KELA says Genesis administrators are currently scrambling to fix their inventory deficit and feed the store with new credentials before customers notice a drop in new and fresh listings.
One could say that if they don't address the issues caused by the new Chrome 80 update, the store's entire future hangs in the balance.
This why Chrome is King of Browsers![]()
Despite the privacy issue being google and all that, chrome has done more for security, standards and a overall better web then any other web browser.
Chrome is my goto browser now, sorry ff, but I still wish that it had standard windows drop down menus.
This will be only a temporary complication. People should never ever store passwords in the browser.
Any reason for that? While password managers are usually more secure, I don't see much danger in using the browser. I always found firefox and chrome's password managers to be pretty secure. This site seems to steal them from browsers that are on systems with no password or an infected pc. So long as the device itself is secured. The system password is required to view them. Almost all sites that allow saved passwords to be used also require manual entry when trying to change anything in their account settings. So even if someone using your saved password to log into one of your sites, when they go to account settings there isn't much they can do when its requested again. Unless they start really trying to crack it, in which case if you're this targeted no security will save you anyway.
You can also provide your own master password to use instead of the default 256 bit google credentials encryption that the browser uses. I recommend that option more.
There are so many browser vulnerabilities abusing the inbuilt password managers, that people do not even bother reporting them anymore, they just get fixed on the go. Password managers with auto-fill enabled can be also exploited, but they are usually more secured and typically require user's interaction.
Well, browser extensions can easily harvest passwords/hashes, even ads will do (scripts, hidden iframes).
Browser-based password managers are being exploited by advertisers – BGR
I use offline Keepass for important passwords and online Bitwarden for the rest.
hmm, i wonder if this is why google moved the browser autofill to gboard instead of within the browser on android. Recent change I noticed. And yes browser extensions could definitely cause issues. Makes sense.
I don't save any important passwords, I just remember them. All the ones I save are forums and convenience stuff that wouldn't matter if it was compromised.
Getting people to use a password manager has proven difficult for me, so I just have them use chrome's password manager with two factor enabled on their google account and hope it's enough. At least chrome is pretty fast at resolving vulnerabilities.