You have to be freaking kidding me right? Don't these companies feel any shame? https://www.bleepingcomputer.com/ne...t-your-passwords-via-web-browsers-spellcheck/ https://www.otto-js.com/news/articl...check-features-expose-pii-even-your-passwords
You couldn't make this stuff up. I'm pretty sure shame is not in their collective dictionary vocabularies (see what I did there?).
Yes, I see what you did there. And I'm actually surprised that nobody else responded, as if this was already to be expected from these companies LOL. I'm lucky that I never used the ''enhanced spell check'' in Vivaldi, I wouldn't be surprised if it also suffered from this ''bug''.
Time to start buying old fashioned hard copy dictionaries I think. Or maybe live in a Faraday cage ...
I just sent a company wide email yesterday warning everyone here of this. Unbelievable. This can't be an accident.
It's absolutely crazy. By now everyone should know that Chrome and Edge are basically spyware. It's best to switch to Vivaldi, Brave or Firefox. Although I also don't fully trust Brave and Firefox to be honest. And it's not clear if this bug is also present in other Chromium based browsers like Vivaldi, Opera and Brave.
Are we assuming this is a bug? These are 2 of the biggest, if not the 2 biggest tech companies in the world. An error of judgement maybe. Maybe.
Yes, I'm trying to be friendly. But I also don't believe this was a bug, because they should have known that such a feature could leak sensitive data, but they simply don't care. But I have been saying for years that Chrome is spyware, this isn't exactly the first scandal. Edge is probably not much better.
Is that feature even enabled by default in Chrome? From what I read, it isn’t. Then the number of users potentially affected by this bug shouldn’t be huge. With that said, this doesn’t mean it shouldn’t be fixed or improved.
I agree. From what I've read you have to enable it in Chrome. For Edge you must go to greater lengths: install extension. I still have a copy CD with dictionary of my native language and some python script that can change it format to old-fashioned open source dictionary program just in case
Not much greater lengths. I have found it on every PC in the office so I think the extension finds you instead of the other way around.
Ok, my bad. I didn't know that. BTW The company I work in blocklisted all extensions unless they are on allowlist long ago. Blocklist is implemented by * (wildcard) in some registry key. I believe accidentally company is secure from that password-leaking.
one of the very first things i do when setting up a new browser is to disable the autocomplete and spellcheck features.
Good point, but it's still not acceptable, like you already said. And who knows how many of these extra features can leak sensitive data. The best option is to drop Chrome and Edge as soon as possible, if you ask me. Oh, didn't know about this, you need an extension in Edge for this? Must have missed this. LOL, why isn't this a surprise to me?
