Chrome bug causes users to accidentally 'invite' hackers to track them

May 31, 2017 13:06

A new vulnerability allows users to accidentally allow the Chrome browser to record audio through the microphone and activate the camera to record video without knowing it.

According to IBTimes, the vulnerability was discovered by Ran Bar-Zik, an AOL developer. He rated the vulnerability as "critical".

loi-chrome-khien-nguoi-dung-vo-tinh-kich-hoat-micro-camera

Users can accidentally enable Chrome to record audio and video without knowing it.

Normally, Chrome will notify you when the camera or recording is activated. When the user agrees to use this feature, a red dot will also appear on the tab to show that the recording is in progress.

However, Bar-Zik found that in some cases, the browser bug allows a pop-up to start recording audio and video without displaying the red dot, so users could unknowingly allow the browser to track them.

Bar-Zik discovered the bug while processing a website running WebRTC code - a protocol that allows streaming video and audio over the Internet in real time. He then sent a notice to Google.

Google responded immediately. However, the company did not consider it a security vulnerability, but promised to "look into ways to improve the situation".

Bar-Zik was not satisfied with this answer. He still believes that Google has underestimated the problem and that users can be tracked if they accidentally give hackers hardware access. "Users should be wary of websites that ask for microphone and camera access to avoid unfortunate consequences,"Bar-Zik warned.

According to VNE

RELATED NEWS

Featured Nghe An Newspaper

Latest

x
Chrome bug causes users to accidentally 'invite' hackers to track them
POWERED BYONECMS- A PRODUCT OFNEKO