1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Privacy alert: Maxthon web browser sends private data about users to China

Discussion in 'BlackHat Lounge' started by Asif WILSON Khan, Jul 17, 2016.

  1. Asif WILSON Khan

    Asif WILSON Khan Executive VIP Jr. VIP

    Joined:
    Nov 10, 2012
    Messages:
    12,599
    Likes Received:
    34,732
    Gender:
    Male
    Occupation:
    Fun Lovin' Criminal
    Location:
    London
    Home Page:
    In the world of web browsers, there are four or five big names to choose from but no end of smaller alternatives. One such browser is Maxthon, and security researchers have just discovered that this Chinese-produced browser is transmitting a wealth of data about users back to China.

    Researchers at Fidelis Cybersecurity and Exatel found that Maxthon frequently sends zip files to Beijing over HTTP and this contains a terrifying amount of data about users' browsing habits. The ueipdata.zip file incudes, among other things, details of the sites visited by users, the applications they have installed, and what searches have been performed.


    The data is contained within an encrypted file in ueipdata.zip called dat.txt, but the necessary decryption key can be easily calculated, researchers showed. They also demonstrated how the data could be intercepted as it made its way to China using a man-in-the-middle attack, and this data could then be used for malicious purposes.

    The company behind the browser says that the data is collected as part of its optional User Experience Improvement Program (UEIP) and is completely anonymous. But security experts found that data was collected regardless of whether users opted in or out of the program.

    Maxthon has responded to the allegations, saying it takes them "very seriously" and has "fully investigated this matter". CEO Jeff Chen says:

    We at Maxthon take users’ privacy and information security seriously. We keep our users’ information secure and private. Maxthon has been in business for over 10 years and there has NEVER been a privacy leak to any third party. We are a truly international company with servers located in the U.S., EU, and Asia. We take endless efforts to improve our product to protect users’ security and privacy.

    This is unlikely to be enough to calm the fears of those who have already been spooked by the discovery, however.



    Source: http://betanews.com/2016/07/16/china-privacy-maxthon-browser/
     
    • Thanks Thanks x 2
  2. dhia27

    dhia27 Jr. VIP Jr. VIP

    Joined:
    Jan 26, 2016
    Messages:
    530
    Likes Received:
    231
    looks that WISLON is doing a lot of detective work (again) today.
    Good share @Asif WILSON Khan
     
    • Thanks Thanks x 1
  3. dhia27

    dhia27 Jr. VIP Jr. VIP

    Joined:
    Jan 26, 2016
    Messages:
    530
    Likes Received:
    231
    I liked that part
    [​IMG]
     
    • Thanks Thanks x 1
  4. Capo Dei Capi

    Capo Dei Capi BANNED BANNED

    Joined:
    Oct 23, 2014
    Messages:
    754
    Likes Received:
    7,211
    I think default browsers with just editing the host files is the best way to go, then you don't need to worry about ads and privacy issues,plus less resources are used.
     
    • Thanks Thanks x 3