Chrome cached sites and passwords "snatched" into a Google account of temporary user.
Reported by
tobia.pa...@gmail.com,
Mar 8 2018
|
|
Issue descriptionPRIVACY ISSUE Please provide a brief summary of the privacy issue. VERSION: Chrome Version: Windows 7 - November/December 2017 REPRODUCTION STEPS Setting up a temporarily Google account of a third person on a Chrome installation that has never been previously associated with any Google account of the computer owner, this takes to unintentional snatching of ALL the sites frequented by the unaware (and careless) owner in his daily use in 'open' mode, with all related associated passwords, when available. Later, if after the end of his work the temporary user removes his account, the owner will find everything of his own apparently deleted, and the browser cleaned up as it was first installed. BUT, in fact, everything is simply reabsorbed into the temporary user's Google account, because Chrome apparently assumes that everything he finds there is always data owned by the current account. So a safe version will never be available until you can use it without a Google identity ... |
|
►
Sign in to add a comment |
|
Comment 1 by msramek@chromium.org
, Sep 5Owner: sabineb@chromium.org
Status: Assigned (was: Untriaged)