PogoWasRight.org

Menu
  • About
  • Privacy
Menu

Google, Microsoft can get your passwords via web browser’s spellcheck

Posted on September 22, 2022June 24, 2025 by Dissent

Recently Britton White and I published a paper on Redline info stealer to try to increase public awareness of how passwords can be stolen from your browser.

Here’s another risk.  Ax Sharma reports:

Extended spellcheck features in Google Chrome and Microsoft Edge web browsers transmit form data, including personally identifiable information (PII) and in some cases, passwords, to Google and Microsoft respectively.

While this may be a known and intended feature of these web browsers, it does raise concerns about what happens to the data after transmission and how safe the practice might be, particularly when it comes to password fields.

Read more at BleepingComputer.

h/t, Joe Cadillic

 

No related posts.

Category: Online

Post navigation

← Indonesia finally passes personal data protection law
Feds want drunk-driving detectors on all new cars after California crash that killed 9 →

Now more than ever

Search

Contact Me

Email: info@pogowasright.org

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

Categories

Recent Posts

  • Microsoft’s controversial Recall feature is now blocked by Brave and AdGuard
  • Trump Administration Issues AI Action Plan and Series of AI Executive Orders
  • Indonesia asked to reassess data privacy terms in new U.S. trade deal
  • Meta Denies Tracking Menstrual Data in Flo Health Privacy Trial
  • Wikipedia seeks to shield contributors from UK law targeting online anonymity
  • British government reportedlu set to back down on secret iCloud backdoor after US pressure
  • Idaho agrees not to prosecute doctors for out-of-state abortion referrals

RSS Recent Posts on DataBreaches.net

  • BreachForums — the one that went offline in April — reappears with a new founder/owner
  • Fans React After NASCAR Confirms Ransomware Breach
  • Allianz Life says ‘majority’ of customers’ personal data stolen in cyberattack
  • Infinite Services notifying employees and patients of limited ransomware attack
  • The safe place for women to talk wasn’t so safe: hackers leak 13,000 user photos and IDs from the Tea app
©2025 PogoWasRight.org. All rights reserved.
Menu
  • About
  • Privacy