Home

Chromium Testing "Password Leak Detection" (Not In Edge Yet)

%3CLINGO-SUB%20id%3D%22lingo-sub-832502%22%20slang%3D%22en-US%22%3EChromium%20Testing%20%22Password%20Leak%20Detection%22%20(Not%20In%20Edge%20Yet)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-832502%22%20slang%3D%22en-US%22%3E%3CP%3EChromium%20and%20Chrome%20are%20experimenting%20with%20Password%20Leak%20Detection.%20Interesting%20to%20see%20if%20Edge%20adds%20that%20in%20at%20some%20point.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ESnipe%20comparing%20Chromium%20(Not%20Chrome)%2078.0.3900.0%20to%20Edge%20Canary%20%3CSPAN%3E78.0.262.0%3A%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F129542i1B98CF801261072F%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22Capture.JPG%22%20title%3D%22Capture.JPG%22%20%2F%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-832534%22%20slang%3D%22en-US%22%3ERe%3A%20Chromium%20Testing%20%22Password%20Leak%20Detection%22%20(Not%20In%20Edge%20Yet)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-832534%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F373791%22%20target%3D%22_blank%22%3E%40ItalianAce%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSTRONG%3EHow%20it%20works%3A%3C%2FSTRONG%3E%3C%2FP%3E%3CP%3EOnce%20enabled%2C%20Google%20Chrome%20will%20then%20show%20you%20if%20the%20password%20you%20enter%20into%20a%20website%20matches%20information%20Google%20has%20on%20public%20data%20breaches.%20This%20feature%20will%20only%20be%20available%20for%20users%20who%20are%20signed%20into%20their%20Google%20account%2C%20but%20it%20can%20help%20millions%20of%20people.%20If%20Google%20Chrome%20detects%20the%20user%20entering%20a%20compromised%20password%2C%20they%20will%20be%20shown%20a%20pop-up%20prompt%20that%20tells%20the%20user%20this%20password%20has%20been%20found%20in%20the%20public%20list%20of%20unsafe%20passwords.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThe%20Password%20Leak%20Detection%20feature%20that%20was%20added%20to%20Chrome%2078%20Canary%20is%20headed%20to%20Android%20as%20well.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThis%20website%20does%20the%20same%20thing%3A%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fhaveibeenpwned.com%2FPasswords%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fhaveibeenpwned.com%2FPasswords%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-832545%22%20slang%3D%22en-US%22%3ERe%3A%20Chromium%20Testing%20%22Password%20Leak%20Detection%22%20(Not%20In%20Edge%20Yet)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-832545%22%20slang%3D%22en-US%22%3E%3CP%3EIt's%20an%20interesting%20feature.%20Might%20be%20an%20eventual%20good%20one%20for%20Edge%20too%20(except%20through%20Microsoft%20syn%2Faccounts%20instead%20of%20Googles%20accounts).%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20checked%20Chrome%20Canary%20app%20on%20Android%20and%20it's%20not%20in%20the%20flags%20yet.%20That%20too%20will%20be%20intersting%20to%20see.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-832550%22%20slang%3D%22en-US%22%3ERe%3A%20Chromium%20Testing%20%22Password%20Leak%20Detection%22%20(Not%20In%20Edge%20Yet)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-832550%22%20slang%3D%22en-US%22%3EI%20doubt%20its%20effectiveness%20though.%20what%20are%20the%20chances%20that%20someone%20who%20hacks%20a%20server%20post%20those%20passwords%20in%20public%3F%3CBR%20%2F%3Eor%20even%20when%20they%20put%20it%20up%20for%20sale%20on%20torrent%20or%20dark%20web%2C%20Google%20goes%20and%20buys%20a%20copy%20from%20the%20hacker%20and%20then%20integrate%20it%20into%20their%20system%3F%3CBR%20%2F%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-832552%22%20slang%3D%22en-US%22%3ERe%3A%20Chromium%20Testing%20%22Password%20Leak%20Detection%22%20(Not%20In%20Edge%20Yet)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-832552%22%20slang%3D%22en-US%22%3E%3CP%3EAbout%20zero.%20Those%20into%20cracking%20password%20or%20servers%20or%20into%20warez%20(software%20piracy)%20wouldn't%20be%20dense%20enough%20to%20post%20those%20passwords%20publicly%20unless%20they%20were%20complete%20amateurs.%20Even%20on%20some%20of%20the%20darknet%20sites%20or%20Tor%20sites%20they're%20not%20going%20to%20openly%20advertise%20or%20distribute%20them.%20The%20password%20leak%20detection%20probably%20is%20a%20good%20backup%20option%2Falternative%20and%20still%20a%20neat%20concept%20however%20as%20always%20people%20should%20be%20careful%20with%20their%20password%20and%20data%20information%20and%20how%20they%20process%20or%20input%20it%20on%20the%20internet%20as%20even%20securited%20sites%20.%26nbsp%3B%20Unless%20Google%20has%20a%20secret%20method%20of%20obtaining%20those%20leaked%20passwords%20that%20no%20one%20else%20knows%20about.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-832555%22%20slang%3D%22en-US%22%3ERe%3A%20Chromium%20Testing%20%22Password%20Leak%20Detection%22%20(Not%20In%20Edge%20Yet)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-832555%22%20slang%3D%22en-US%22%3EExactly%2C%3CBR%20%2F%3EI%20wish%20Microsoft%20would%20make%20a%20copy%20of%20chromium%20engine%20on%20their%20github%20account%2C%20like%20starting%20from%20version%2080%2C%20and%20then%20cut%20its%20connection%20to%20the%20chromium%20and%20Google%20entirely%2C%20so%20that%20new%20versions%20of%20chromium%20won't%20come%20from%20google%20but%20from%20Microsoft%20themselves.%20Microsoft%20engineers%20can%20start%20working%20on%20it%20alone%20and%20add%20their%20own%20features%20in%20parallel%20with%20Google.%3CBR%20%2F%3Ethough%20i'm%20not%20sure%20how%20much%20open%20source%20the%20chromium%20engine%20is%20or%20whether%20its%20license%20agreement%20even%20allows%20that.%3CBR%20%2F%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-832588%22%20slang%3D%22en-US%22%3ERe%3A%20Chromium%20Testing%20%22Password%20Leak%20Detection%22%20(Not%20In%20Edge%20Yet)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-832588%22%20slang%3D%22en-US%22%3E%3CP%3EIf%20I%20remember%20corretly%20%22Chromium%22%20is%20completely%20open%20source.%20What%20Google%20put's%20on%20top%20of%20it%20for%20their%20fork%20(Chrome)%20is%20what%20or%20can%20be%20closed%20source%20(like%20their%20auto%20updater%2C%20AAC%2C%20H.264%2C%20HTML5%20to%20name%20a%20few%20things%20that's%20not%20in%20Chromium).%20However%20Google%20%22contributes%22%20to%20the%20develop%20and%20forwardness%20of%20the%20Chromium%20Project%20which%20to%20some%20can%20or%20might%20be%20preceived%20like%20a%20puppet%20master%20(Google)%20pulling%20the%20puppets%20strings%20(Chromium).%26nbsp%3B%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fwww.chromium.org%2FHome%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fwww.chromium.org%2FHome%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EMicrosoft%20forking%20it%20going%20forward%20with%20their%20own%20Chromium%20spin-off%20engine%20that's%20not%20affliated%20or%20tied%20with%20Google%20is%20a%20interesting%20indeed.%20I%20don't%20know%20if%20that%20ever%20will%20or%20can%20happen%2C%20but%20it's%20a%20fasinating%20idea%20and%20seperates%20Edge%20Chromium%20from%20Google%20Chromium%20like%20Brave%20Browser%20did%20(they%20took%20and%20used%20the%20Chromium%20engine%20without%20Google's%20involvement%20or%20connections%20as%20if%20making%20Chromium%20their%20own).%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20Chromium%20installed%20on%20my%20Windows%2010%20computer%20using%20a%20third%20party%20updater%20application%20(ChromiumUpdathe)%20that%20I%20have%20set%20to%20update%20every%20four%20hours%20(I%20was%20doing%20every%20two%20hours%20for%20new%20build%20revisions%20as%20Chromium%20is%20revised%2Fupdated%20up%20to%2040%20times%20a%20day%2C%20but%20two%20hours%20as%20a%20bit%20too%20much.%20I%20might%20even%20move%20up%20to%20eight%20hours%20even%20though%20it's%20all%20done%20hidden%20without%20view%20in%20the%20background%20unless%20I%20bring%20up%20the%20screens%20in%20Task%20Manager%20like%20in%20my%20snap%20picture%20below)%20through%20a%20third%20pardy%20task%20schedule%20(System%20Scheduler).%20Mainly%20to%20compare%20it%20too%20Edge%20when%20new%20Edge%20features%20come%20out%20or%20to%20see%20if%20a%20bug%2Fcrash%2Fwhatever%20happens%20when%20I'm%20using%20Edge%20to%20see%20if%20it%20is%20also%20found%20in%20Chromium.%3CBR%20%2F%3E%3CBR%20%2F%3EChromium%20is%20about%20identical%20to%20Chrome%20as%20it%20gets%20(or%20I%20should%20say%20Chrome%20is%20identical%20to%20Chromium%20as%20it%20gets%20to%20almost%20every%20detail).%20At%20least%20Edge%20Chromium%20is%20taking%20their%20own%20spin%2C%20look%2C%20design%20and%20enginging%20on%20it.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-center%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F129562i0EFEAE81A87907B5%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22Capture.JPG%22%20title%3D%22Capture.JPG%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-832598%22%20slang%3D%22en-US%22%3ERe%3A%20Chromium%20Testing%20%22Password%20Leak%20Detection%22%20(Not%20In%20Edge%20Yet)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-832598%22%20slang%3D%22en-US%22%3EWhat%20Brave%20did%20was%20great%20and%20brave%20(no%20pun%20intended).%20so%20if%20a%20relatively%20small%20company%20like%20them%20can%20pull%20it%20off%20then%20Microsoft%20can%20do%20it%20as%20well.%3CBR%20%2F%3Eupdates%20every%202%20hours%20wow.%20i%20mean%20i%20love%20to%20see%20new%20updates%20but%20every%202%20hours%20is%20too%20much%20lol.%2040%20times%20a%20day%20is%20what%20like%20hourly%3F%20no%20it's%20more%20than%2024%20times%20so%20it%20must%20be%20minute-ly!%3CBR%20%2F%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-832610%22%20slang%3D%22en-US%22%3ERe%3A%20Chromium%20Testing%20%22Password%20Leak%20Detection%22%20(Not%20In%20Edge%20Yet)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-832610%22%20slang%3D%22en-US%22%3EIt%20was%20really%20cool%20what%20Brave%20did.%20They%20have%20an%20android%20app%20too.%3CBR%20%2F%3E%3CBR%20%2F%3EYeah%2C%20I%20have%20it%20set%20to%20auto%20update%20Chromium%20every%20four%20hours%2C%20but%20maybe%20I'll%20move%20it%20up%20too%208%20or%2012%20hours%20to%20grab%20whatever%20revised%20build%20of%20that%20say's%20build%20is%20up%20at%20the%20time.%3CBR%20%2F%3E%3CBR%20%2F%3EChromioum%20itself%20revises%20it's%20day%20build%20anywhere%20from%2020%20minutes%20to%20to%20an%20hour%20after%20the%20last%20revision%20build%20or%20about%20up%20to%2040%20times%20day%20(could%20be%20less%20or%20more%20of%20course).%20I've%20seen%20revisions%20come%20out%2010%20minutes%20apart%20while%20other%20times%20two%20hours%20a%20part.%3CBR%20%2F%3E%3CBR%20%2F%3ESo%20Chromium%20browser%20in%20the%20chrome%3A%2F%2Fversion%20will%20say%20something%20like%2078.3900.0%20followed%20by%20%22692367%22%20with%20692367%20being%20the%20latest%20revision.%20I%20think%20(I%20could%20be%20wrong%2C%20I%20heard%2Fread%20this)%20that%20Google%20takes%20the%20best%20and%20most%20stable%20of%20that%20days%20Chromium%20%22revisions%22%20of%20that%20day's%20build%2C%20and%20to%20promotes%20it%20to%20Chrome%20Canary%20each%20night%20via%20their%20auto%20converter%20(adding%20all%20the%20Google%20Chrome%20stuff%20and%20logo%20which%20is%20instantanious)%20and%20upload%20bot.%20Right%20now%20Google%20Chrome%20Canary%20is%2078.3899.0%20while%20Chromium%20is%2078.0.3900.0%20and%20at%20a%20designated%20time%20later%20at%20night%20or%20tomorrow%20morning%20Google%20will%20take%20the%20most%20stable%20of%20the%20revised%20Chromium%20builds%20of%2078.3900.0%20and%20%22promote%20it%22%20to%20Chrome%20Canary%20tomorrow%20while%20Chromium%20moves%20too%2078.3901.0%20that%20same%20day%20and%20starts%20all%20the%20revisions%20again%20by%20their%20developers.%3CBR%20%2F%3E%3CBR%20%2F%3EChromium%20site%20will%20tell%20you%20the%20current%20revised%20build%20and%20time%20since%20that%20revised%20version%20was%20uploaded%20(and%20also%20the%20link%20to%20download%20it)%20here%3A%3CBR%20%2F%3E%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fdownload-chromium.appspot.com%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdownload-chromium.appspot.com%3C%2FA%3E%3C%2FLINGO-BODY%3E
ItalianAce
Regular Contributor

Chromium and Chrome Canary are experimenting with Password Leak Detection. Interesting to see if Edge adds that in at some point.

 

Snipe comparing Chromium (Not Chrome) 78.0.3900.0 to Edge Canary 78.0.262.0:

 

Capture.JPG

8 Replies

@ItalianAce 

 

How it works:

Once enabled, Google Chrome will then show you if the password you enter into a website matches information Google has on public data breaches. This feature will only be available for users who are signed into their Google account, but it can help millions of people. If Google Chrome detects the user entering a compromised password, they will be shown a pop-up prompt that tells the user this password has been found in the public list of unsafe passwords.

 

The Password Leak Detection feature that was added to Chrome 78 Canary is headed to Android as well.

 

 

This website does the same thing:

 

https://haveibeenpwned.com/Passwords

 

It's an interesting feature. Might be an eventual good one for Edge too (except through Microsoft syn/accounts instead of Googles accounts). 

 

I checked Chrome Canary app on Android and it's not in the flags yet. That too will be intersting to see. 

I doubt its effectiveness though. what are the chances that someone who hacks a server post those passwords in public?
or even when they put it up for sale on torrent or dark web, Google goes and buys a copy from the hacker and then integrate it into their system?

About zero. Those into cracking password or servers or into warez (software piracy) wouldn't be dense enough to post those passwords publicly unless they were complete amateurs. Even on some of the darknet sites or Tor sites they're not going to openly advertise or distribute them. The password leak detection probably is a good backup option/alternative and still a neat concept however as always people should be careful with their password and data information and how they process or input it on the internet as even securited sites .  Unless Google has a secret method of obtaining those leaked passwords that no one else knows about.

Exactly,
I wish Microsoft would make a copy of chromium engine on their github account, like starting from version 80, and then cut its connection to the chromium and Google entirely, so that new versions of chromium won't come from google but from Microsoft themselves. Microsoft engineers can start working on it alone and add their own features in parallel with Google.
though i'm not sure how much open source the chromium engine is or whether its license agreement even allows that.

If I remember corretly "Chromium" is completely open source. What Google put's on top of it for their fork (Chrome) is what or can be closed source (like their auto updater, AAC, H.264, HTML5 to name a few things that's not in Chromium). However Google "contributes" to the develop and forwardness of the Chromium Project which to some can or might be preceived like a puppet master (Google) pulling the puppets strings (Chromium).  https://www.chromium.org/Home

 

Microsoft forking it going forward with their own Chromium spin-off engine that's not affliated or tied with Google is a interesting indeed. I don't know if that ever will or can happen, but it's a fasinating idea and seperates Edge Chromium from Google Chromium like Brave Browser did (they took and used the Chromium engine without Google's involvement or connections as if making Chromium their own). 

 

I have Chromium installed on my Windows 10 computer using a third party updater application (ChromiumUpdathe) that I have set to update every four hours (I was doing every two hours for new build revisions as Chromium is revised/updated up to 40 times a day, but two hours as a bit too much. I might even move up to eight hours even though it's all done hidden without view in the background unless I bring up the screens in Task Manager like in my snap picture below) through a third pardy task schedule (System Scheduler). Mainly to compare it too Edge when new Edge features come out or to see if a bug/crash/whatever happens when I'm using Edge to see if it is also found in Chromium.

Chromium is about identical to Chrome as it gets (or I should say Chrome is identical to Chromium as it gets to almost every detail). At least Edge Chromium is taking their own spin, look, design and enginging on it. 

 

Capture.JPG

 

 

What Brave did was great and brave (no pun intended). so if a relatively small company like them can pull it off then Microsoft can do it as well.
updates every 2 hours wow. i mean i love to see new updates but every 2 hours is too much lol. 40 times a day is what like hourly? no it's more than 24 times so it must be minute-ly!
It was really cool what Brave did. They have an android app too.

Yeah, I have it set to auto update Chromium every four hours, but maybe I'll move it up too 8 or 12 hours to grab whatever revised build of that say's build is up at the time.

Chromioum itself revises it's day build anywhere from 20 minutes to to an hour after the last revision build or about up to 40 times day (could be less or more of course). I've seen revisions come out 10 minutes apart while other times two hours a part.

So Chromium browser in the chrome://version will say something like 78.3900.0 followed by "692367" with 692367 being the latest revision. I think (I could be wrong, I heard/read this) that Google takes the best and most stable of that days Chromium "revisions" of that day's build, and to promotes it to Chrome Canary each night via their auto converter (adding all the Google Chrome stuff and logo which is instantanious) and upload bot. Right now Google Chrome Canary is 78.3899.0 while Chromium is 78.0.3900.0 and at a designated time later at night or tomorrow morning Google will take the most stable of the revised Chromium builds of 78.3900.0 and "promote it" to Chrome Canary tomorrow while Chromium moves too 78.3901.0 that same day and starts all the revisions again by their developers.

Chromium site will tell you the current revised build and time since that revised version was uploaded (and also the link to download it) here:

https://download-chromium.appspot.com
Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
35 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies