NEWS    RECALLS    COMPLAINT FORM    SCAM ALERTS   RESOURCES  
Small Claims Guide   Class Actions   Lemon Laws   FAQ   Newsletters  
Bookmark and Share


Complain about a product or service

Automotive    Education    Employment    Electronics    Family    Finance    Health    Homeowners    Insurance    Pets    Shopping    Travel     Print This     Email This    



NEWS   Latest |  Archives |  Auto |  Cells, etc. |  Computers |  Financial |  Health |  Homeowners |  Parents |  Privacy |  Scams |  Seniors |  Travel

Google Anti-Phishing Feature Accidentally Reveals Too Much





By Martin H. Bosworth
ConsumerAffairs.com

January 23, 2007

RFID Eyed as Anti-Shoplifting Tool
Internet Providers Admit to Monitoring Customers' Web Surfing
Big Brother Hitching A Ride in California?
GAO: Government Can Do More to Protect Personal Data
US Search Agrees to Stop Selling Private Credit Data
TSA Site Left Passenger Data Exposed To ID Theft
Connecticut Governor Wants 'Opt Out' For Online Directories
Verizon Gave Customer Data To Government Without Court Orders
House Democrats Probe Warrantless Surveillance
---
More Privacy News ...

A feature developed by Google to add Web sites suspected of "phishing" to a blacklist inadvertently collected the personal and financial information of its users, according to the Finjan security firm.

Google's "Safe Browsing" feature warns users if a site they are about to visit is a "phishing" site, designed to purloin visitors' financial information for the benefit of hackers.

Google keeps a "blacklist" of catalogued phishing sites available and regularly updates it, but Finjan's researchers found evidence of submitters' personal information being included on the list, without any privacy protection.

"After examining the data provided in these files, Finjan found that sensitive user information was available on the web with no access protection, including emails, usernames, passwords and session tokens that could be used by hackers to compromise users' privacy," said Finjan's chief technology officer Yuval Ben-Itzhak in a statement.

Google issued a statement saying that the offending data was removed, which Finjan independently verified.

"We have removed this information from URLs in the blacklist and created a process whereby this information is automatically stripped from future URLs submitted by users," the company added.

The story was initially picked up by Michael Arrington at the TechCrunch blog, and independently confirmed by San Jose, CA-based Finjan. The firm published pictures of the list, with the personal information redacted to prevent misuse.

The current Google antiphishing list -- minus the offending data -- is still publicly available.

Google's Safe Browsing system was incorporated both into the new Google Toolbar for Firefox, and the newest version of Firefox itself.

When Firefox 2.0 was released in October, observers noted the potential privacy risk of sending information about visited sites to Google.

Some critics said the incident was reminiscent of the massive AOL data breach, where researchers published the private search data of 600,000 subscribers, albeit on a much smaller and less damaging scale.



Report Your Experience
If you've had a bad experience -- or a good one -- with a consumer product or service, we'd like to hear about it. All complaints are reviewed by class action attorneys and are considered for publication on our site. Knowledge is power! Help spread the word. File your consumer report now.

FREE CONSUMER NEWSLETTERS

The Daily Consumer
Afternoons M-F

Sign up now!


Consumer News & Alerts
Every Sunday

Sign up now!

Follow us on Twitter.





CONSUMER NEWS

SAFETY RECALLS

Back to the top |

Advertisement


Custom Search
AUTOMOTIVE
• Dealers
• Manufacturers
• Service
• Extended Warranties
• Lemon Laws
• Recalls
• Tires
• Transporters

FAMILY
• Aging
• Children, Parenting
• Recalls
• Dating
• Education
• Entertainment
• Pets
• Weddings
FINANCE
• Annuities
• Banks
• Credit Cards
• Debt Collection
• Debt Counseling
• Insurance
• Investing
• Loans
• Mortgages
• Payday Loans
• Student Loans
• Tax Prep

HEALTH
• Doctors
• Drugs, Pharmacies
• Health Clubs
• Hearing Care
• Hospitals
• Nursing Homes
• Nutrition, Diets
• Vision Care
• Weight Loss
HOUSE & HOME
• Appliances
• Cookware
• Furniture
• Home Improvements
• Lawn & Garden
• Movers
• Pools & Spas
• Realtors, Rental Agents
• Recalls
• Utilities

ELECTRONICS
• Cable TV/DBS
• Cameras
• Cell Phones
• Computers
• Home Electronics
• Internet Access
• Local Phone Service
• Long Distance
• VoIP
SHOPPING
• In-Home
• Online
• Retail Stores
• Sporting Goods
• Supermarkets
• Telemarketers

TRAVEL
• Airlines
• Bus Lines
• Car Rental
• Cruises
• Hotels
• Travel Agents
• Trains

RESOURCES
• Class Actions
• Complaint Form
• Small Claims Guide
• Lemon Laws
CONSUMER NEWS
• Latest News
• Automotive
• Telecom
• Financial
• Health
• Homeowners
• Scams
• Seniors
• Travel
• More ...

RECALLS
• Automotive
• Children's Products
• Drugs
• Food
• Household Products
• Sporting Goods

ABOUT US
• FAQ
• Privacy Policy
• Advertise With Us
• Newsroom
• Syndication
• Terms of Use

Terms of Use Your use of this site constitutes acceptance of the Terms of Use

Advertisements on this site are placed and controlled by outside advertising networks. ConsumerAffairs.com does not evaluate or endorse the products and services advertised. See the FAQ for more information.

Company Response Welcome If complaints about your company appear on our site, we welcome your response. Please see the Response Form for more information.

For more information, see the FAQ and privacy policy. The information on this Web site is general in nature and is not intended as a substitute for competent legal advice.  ConsumerAffairs.com Inc. makes no representation as to the accuracy of the information herein provided and assumes no liability for any damages or loss arising from the use thereof. 

Copyright © 2010 ConsumerAffairs.com Inc.  All Rights Reserved.    The contents of this site may not be republished, reprinted, rewritten or recirculated without written permission.