Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Edge's Private Browsing Mode Isn't Actually Private (betanews.com)

Posted by timothy on from the keep-it-to-ourselves-alright? dept.

JustAnotherOldGuy writes: The forensic examination of most web browsers has proven that they don't have a provision for storing the details of privately browsed web sessions. However, in the case of Microsoft Edge, the private browsing isn't as private as it seems. Previous investigations of the browser have resulted in revealing that websites visited in private mode are also stored in the browser's WebCache file. The Container_n table stores web history, and a field named 'Flag' with a value of '8' shows that website was visited in private mode. An investigator can easily spot the difference and use this evidence against a person. The not-so-private browsing featured by Edge makes its very purpose seem to fail, and you can't help but ask how such a fundamental aspect of private browsing could be so fantastically borked. It beggars belief.

4 of 159 comments (clear)

  1. Re:First Post? by blavallee · · Score: 5, Insightful

    I would say, it's just not a surprise anyone here. An antonym of privacy or security is Microsoft.

  2. Re:Indifference by Anonymous Coward · · Score: 5, Insightful

    I've concluded in the past couple of years that large parts of Microsoft as an organization have stopped being able to coherently sell to the end user market, and whatever people in the management that would have in the past noticed this sort of thing and taken steps to correct it have left or moved on to other roles.

    It smells more to me like they've made a concerted decision that the end user is no longer the target market. The end user is now the product. Microsoft's "business partners" are advertisers and law enforcement agencies, that's where the revenue is coming from.

    The Edge behavior described in this article is very hard to explain away as laziness or incompetence. Intentional decisions were made during all phases of design and development to continue storing the user's history even when in private browsing mode. That isn't clueless management or devs taking the easy way out. That's purposely turning the end user's computer into a tool to be used against him.

    Microsoft is now actively hostile to the end user and folks would do well to remember it.

  3. Re:I'm shocked by rtb61 · · Score: 5, Insightful

    It is not really all that funny. Not only is it not private it is marked as pretended to be so on analysis they can find out exactly what you wanted to keep private. That looks really, really bad, not only a failure of privacy but seemingly purposeful gathering of data for extortion purposes, obviously not run of the mill people but selected individuals via the scatter gun method, hide the invasiveness by targeting everyone so that the specific targets are unaware. Then there is how long they will keep the data for ie target every potential politician in high school and university so that decades down the track they can be extorted in compliance or destroyed. It is one thing to screw up privacy, it is quite another to specifically mark data as private and keep it.

    --
    Chaos - everything, everywhere, everywhen
  4. Re:First Post? by Anonymous Coward · · Score: 5, Insightful

    They invented unsafe OS with user processes running in kernel mode.
    They invented the mail-transported virus, when outlook auto-executed attachments received by email
    They invented web vulnerabilities with activeX (Execute code found on web pages - no need to look for buffer overflows when this sort of thing is designed in.)

    So indeed, no surprise from microsoft here.