Google Chrome Has a Bug That Lets Any Site Eavesdrop On You - Polidicks

[QUOTE=CommanderPT;43633072]While this is a bad exploit, how about just muting/unplugging your mic when you aren't using it for now?[/QUOTE] To some, that's too much work. The plug could be all the way at the back of the computer or it cannot be physically removed on a laptop or mobile device.

So from what i understand, it wont start recording you until you have used some site that records your voice after your permission?

[QUOTE=Brandon1995;43633160]So from what i understand, it wont start recording you until you have used some site that records your voice after your permission?[/QUOTE] That's what it sounded like. I personally never use features like that.

[QUOTE=Brandon1995;43633160]So from what i understand, it wont start recording you until you have used some site that records your voice after your permission?[/QUOTE] Basically what the bug is is that the site will open up a popup window underneath normal chrome that is listening to you, and when you close the tab that was listening to you, that still stops, but the popup window is still listening to you either way. The easy way to prevent the exploit is a nifty little tool called a taskbar.

It's probably a mac-only bug.

Cannot wait until they invent some sort of bar at the edge of the screen that lists what windows you have open.

There's something oddly comical about the way she reveals the bug itself. "And yet"... And then she resizes the window, revealing the spy beneath it. I want a very suspenseful and tense sound effect there. [media]http://www.youtube.com/watch?v=rbusENG6hCE[/media]

It's not really a fucking security vulnerability when the site is still open, in a pop-up window, and the dumbass just hasn't spotted the pop-up window because she has a shitty window manager, aka whatever the fucking thing is called in OS X.

I never encountered any of this, so I'm safe, I guess?

If anything it is an OSX exploit

This is outrageous! How will I now safely talk with my Syrian rebel friends if the NSA is listening in?!

The site she visited was taken down (404) and replaced with page for the video in the OP. It's probably been fixed already.

Its still a vulnerability even if its just shit design The question is why it can access the mic without any questions in the first place

[QUOTE=Tobba;43642631]Its still a vulnerability even if its just shit design The question is why it can access the mic without any questions in the first place[/QUOTE] It does ask though But the site makes a pop under after you approve it

[QUOTE=Tobba;43642631]Its still a vulnerability even if its just shit design The question is why it can access the mic without any questions in the first place[/QUOTE] It did, and she said yes.

[QUOTE=Coyoteze;43639264]There's something oddly comical about the way she reveals the bug itself. "And yet"... And then she resizes the window, revealing the spy beneath it. I want a very suspenseful and tense sound effect there.[/QUOTE]Yeah, the reveal was presented in a quite dramatic way, I imagined a boardroom full of Google Chrome devs gasping unanimously. [quote][i]And yet... Google Chrome is still listening.[/i][/quote]

The only way it was listening is because it was from the same site, and that window had already been given permission. There is no "bug" or exploit. If a site tries to use your mic, it will always prompt. I dont see how this could even be considered a bug, really.

[QUOTE=dai;43631788]that's a hugely overlooked issue, yeah. it's dumb but seems like a thing that could be pinned on you for not paying attention to new windows opening. This is a lot less concerning than the whole [b]'facebook cookies that know what you're typing in other tabs while the site is open so they can better target your advertising'[/b][/QUOTE] Wait a minute WHAT

[QUOTE=Agoat;43657422]Wait a minute WHAT[/QUOTE] It's just normal tracking cookies. Use AdBlock Plus and tick the box for social media blocking.

[QUOTE=Agoat;43657422]Wait a minute WHAT[/QUOTE] Google cookies do this as well for adsense, lot of advertising platforms do. It's nothing new.

Solution: quit being lazy and type.

such a silly yet convenient bug

I detach my mic from my headset when I'm not using it anyway, there's a mic jack on the actual headset that I can just take it out. Razer saves gaming and your privacy.

[QUOTE=Mingebox;43632586]I just simulate using Firefox by putting wax paper over my screen and closing the browser every 10 minutes.[/QUOTE] I simulate using chrome by pouring hot lard onto my CPU then blasting it with a cold hairdryer every time I want to use flash or click a tab that's been open for more than 50 minutes.