Chrome form autofill leaks data you never meant to share

>FFS. My guess is sites don't get this data if it isn't actually inputted into the form?
Sites get all data sent in the request header, which everything in that image was

>using autofill
!?

...

>servo
You mean the new layout engine Mozilla has been working on for 5 years that just a few months ago was able to produce a working demo capable of rendering text and images?

you're misreading user's first statement. if you type in the data manually the POST won't contain data from a would-be autofill

>no adblock
??

>Adblock
Kys

The site needs to have other form inputs for address, phone etc. as well. But if you use autofill they will be filled in and sent, too, even if they are hidden.

The full example can be found here: github.com/anttiviljami/browser-autofill-phishing

>no adblock
>says kys
??

This doesn't always happen, this happens when the site has hidden input fields, Chrome will fill them out as well.

newfag detected

>has autofill enabled
>forms are automatically filled
Problem?

No one on Earth would abuse this right.
People is good after all.

why

dont autofill forms on sites you don't trust, or don't at all if you're so spooked, easy!

He's just a retard.
Like the same ones that that get ransomware by browsing bigblackttites.com or some other dodgy porn site.

>I auto-fill and save all my info in the cache and google account
>oh no, it auto filled! God damn hackers :(((((

Chrome's addon API used to have no way to intercept and block web requests, so all “ad blockers” could do was hide ads, not block them

It took a lot of pressure for google to finally change this

the form has to be specially designed for this to happen, doesn't it?

for this to happen the input fields would need to be there, but they can be hidden

>w-who cares that windows spies on you whenever you plyg a webcam in, you can just not plug in a webcam! Easy!

>used to

Well in fairness I browse lots of dodgy porn sites but I have ublock origin, umatrix and noscript carefully configured and have never got ransomware.

What I'm more surprised about is that I never got ransomwared from cracked game torrents

0.02 shekels has been deposited into your account

poor comparison

epik post, good meme'd

Use Opera

>Adblock
>Not uBlock

I meant adblockers in general, I use uBlock.

If anyone wants to try for themselves

a.pomf.cat/znwsoo.html

Chrome is a hacky mess.

>Chrome's file selection window keeps getting bigger
>Google's fix is to just force the window to its smallest size every time you open it
What a fucking joke

Thank you.
Chrome: Vulnerable
Firefox: Not vulnerable
Edge: "This website has been flagged as unsafe"
IE: I don't know, I don't use it.

I can't help but feel this is intentional from Google

No shit. fucktard.
Now how many people use autofill?

>Chrome ran out of memory
LOL WUT

>Chrome is a hacky mess.
the botnet dataminer works
everything else is of low priority

email: sage
name:
phone:
ship-address:
ship-city:
ship-state:
ship-zip:
ship-country:

riiight...

Why even care?

Enough places get your data anyway and you can do nothing to stop that.

Fuck it and keep using autofill.

Apple Safari doesn't have this problem

>unironically using any type of autofill

Anybody who uses this, should be beheaded right away

>reposting last year """news"""
when was chrom*, and derivatives, not shit on security?
>more at 11, tune in

>only shitposting
>not a single answer to OP's question
never change, Sup Forums