E&T news story: autofill browser feature enables hackers to steal private data
A cyber security news story from E&T online
Hackers can abuse the autofill feature available on most web browsers to launch phishing attacks and steal confidential data without the users knowing.
Finnish web developer and hacker Viljami Kuosmanen, who discovered the threat, said the autofill functionality, which enables users to fill in lengthy forms with a single click by using stored profiles, would be best avoided altogether.
What happens is that while the user might think he or she is only sharing their name and email address with a particular web site, the scammers may secretly ask the browser for further information such as telephone numbers and address details.