Browser Password Security test – most failed

Google Chrome and Safari are tied at the bottom of the list of a password security test run by CIS – Chapin Information Services.

Two years ago CIS discovered a flaw on Mozilla that could give “clever attackers” access to your saved passwords. A few days ago CIS ran a security test on all the major browsers and to their horror and surprise most of them did really badly, including Internet Explorer.

Among the problems are three in particular that, when combined,
allow password thieves to take passwords without the user’s knowledge.
They are:

  1. The destination where passwords are sent is not checked.
  2. The location where passwords are requested is not checked.
  3. Invisible form elements can trigger password management.

You can test your own browser at the CIS website.

Technorati Tags: , , ,

Leave a Comment


NOTE - You can use these HTML tags and attributes:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>