Following the news of the emergence of the Google Chrome bug which allows websites to record audio and visuals without the users permission or knowledge, which could be potentially weaponised to spy on targets. IT security experts from The Media Trust and Comparitech.com commented below.
Chris Olson, CEO at The Media Trust:
“While Google may not consider this a blatant security violation, it most certainly should concern website operators and consumers alike. Not only does this flaw expose the lack of control website operators have over their digital properties, but it also violates consumer privacy expectations. In an environment with increasing attention paid to consumer rights, this flaw has the potential to damage consumer faith in the internet.”
Lee Munson, Security Researcher at Comparitech.com:
“The Google Chrome bug that allows websites to surreptitiously record audio and video highlights, more than anything, is why users need to be aware of the permissions they are accepting.
Even though giving unfettered access to hardware is a universally bad idea, it is human nature to take the path of least resistance which is why we see permissions given and draconian privacy policies and terms of service agreed to.
Until that changes, which is unlikely to be any time soon, people will fall foul to bugs like this.
Hence, it is important to not only generate awareness around this specific issue, but also to remind people once again about the potential dangers of webcams – which should at least be covered when not in use – and microphones that should ideally be disconnected when not required.”
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.