Friday, October 4, 2024
HomeTechnologyBrowser Autofill Feature Poses Security Risks

Browser Autofill Feature Poses Security Risks

Published on

Browser Autofill feature helps you to save your credentials like call, email, address, cellphone quantity, etc. so you don’t have to fill it manually time and again.Tragically, it’s helpful for attackers, as well.

Despite that maximum users see Autofill feature as a comfort that gives ease while filling out credentials, it is able to also result in large protection risks main to financial losses and a chance to personal facts.

This proof-of-concept demo website consists of a simple online web form with just two fields: name and email.

- Advertisement - EHA

But what’s not visible are many out of sight fields, including the credit card information, phone number, organization, address, postal code, city etc.

Browser Autofill Feature Poses Security Risks
Browser Autofill Feature Poses Security Risks

Fields inside the page may also get auto-filled alongside no less than one seen, standard content zone that is typically placed in some other container inside a similar frame.

Browsers vulnerable against the assault incorporate Google Chrome, Apple Safari and Opera. Then again, if you utilize Mozilla Firefox or Tor, you don’t have to stress over this issue in light of the fact that Mozilla doesn’t encourage auto-filling many fields at once.

On the positive side, this strategy alone can’t catch passwords spared in the program since they’re fixing to a particular domain, yet that is not going to feeling somebody that lost their individuality and financial information.

How to Mitigate the Risk

One of the unfeasible methodologies is investigate the source code of the page before submitting anything. In any case, this is impractical essentially and furthermore includes specialized know-how. Consequently, the best approach is incapacitate autofill highlight for all time.

Disable auto-filling of online forms – Opera

  • Tap on the Opera button.
  • Go to Settings > Privacy & security.
  • In the right pane, scroll to the “Autofill“.
  • Uncheck “Enable auto-filling of forms on webpages“.

Disable auto-filling of online forms – Chrome

  • Load Google Chrome browser in your PC.
  • Tap on the upper right side corner of your program window to open “Settings”.
  • Tap on the “Advanced Setting” to look down to the “Passwords and forms” section.
  • Expel the check stamp from “Enable Autofill to fill out web forms in a single click” and “Offer to save your web passwords.”

Disable auto-filling of online forms – Safari

  • Click on the Safari menu > Preferences > Autofill tab.
  • Next to “AutoFill Web Forms” uncheck the following options:
    • Using info from my Address Book card
    • User names and passwords
    • Other forms
  • Close the preferences window.
Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Prince Ransomware Hits UK and US via Royal Mail Phishing Scam

A new ransomware campaign targeting individuals and organizations in the UK and the US...

Microsoft, DOJ Dismantle Domains Used by Russian FSB-Linked Hacking Group

Microsoft and the U.S. Department of Justice (DOJ) have successfully dismantled a network of...

Cloud Penetration Testing Checklist – 2024

Cloud Penetration Testing is a method of actively checking and examining the Cloud system...

Linux Malware perfctl Attacking Millions of Linux Servers

Researchers have uncovered a sophisticated Linux malware, dubbed "perfctl," actively targeting millions of Linux...

Free Webinar

Decoding Compliance | What CISOs Need to Know

Non-compliance can result in substantial financial penalties, with average fines reaching up to $4.5 million for GDPR breaches alone.

Join us for an insightful panel discussion with Chandan Pani, CISO - LTIMindtree and Ashish Tandon, Founder & CEO – Indusface, as we explore the multifaceted role of compliance in securing modern enterprises.

Discussion points

The Role of Compliance
The Alphabet Soup of Compliance
Compliance
SaaS and Compliance
Indusface's Approach to Compliance

More like this

Exploring the Best Free VPS Control Panel for Web Hosting

Managing a Virtual Private Server (VPS) can feel overwhelming, especially if you're not well-versed...

Key IoT Use Cases in Education

The Internet of Things (IoT) is transforming the world of education, bringing new opportunities...

Ceph Storage Demystified: Go-To Guide for Beginners

Ceph is an open-source, software-defined storage platform that can handle massive amounts of data...