Lifewire – The Spell Checker in Your Web Browser Could Have Leaked Your Passwords

“Brian Chappell, Chief Security Strategist, EMEA & APAC, at BeyondTrust, says the show password feature on many websites is locally implemented by the site itself. "This isn't a case of Google's Chrome not reacting correctly to a password field, but rather it's the browser reacting correctly to a textbox that hasn't been marked as exempt for spell checking," said Chappell. "Resolving this will lie with each website that's offering this functionality."

Chappell assures people that the concern for both browsers relates to enhanced services and not the default spell checking, which is enabled by default. At the same time, he feels Google and Microsoft could do a better job of alerting users that personally identifiable information (PII) might be transmitted to their servers, as they enable their respective enhanced spell checkers while sharing details about how this data will be processed and secured.”

Read the full story here: https://www.lifewire.com/the-s...