Third-Party Android Browser Found To Be Transmitting Every URL Visited
Third-Party Android Browser Found To Be Transmitting Every URL Visited
Posted 10/28/2011 at 3:04pm
| by Ryan Whitwam
9
Comments
Print
Dolphin Browser HD is one of the most popular alternative browsers on Android, which is why the latest news on that front is so disconcerting. According to an exhaustive investigation by Android Police, Dolphin HD is sending all user URLs in plain text to a Dolphin webserver. The goal is to match URLs to a webzine whitelist service that Dolphin then provides to users, but as Android Police said, this is “an amateur solution.”
It appears that any URL, be it secured or not is sent with no security whatsoever. For its part, Dolphin says that the data is not retained, and anyway the issue was addressed in a recent update. Though, in an update Android Police says its original version was done with the new version. Users of rooted phones can block access to the Dolphin webzines server that the data is going to. Other users are encouraged to sop using the app.
While this background service is not sending the contents of pages. it is still unacceptable to have every URL you visit sent unencrypted into the open internet. Considering the attention this is getting, we expect a fix to be incoming soon. Does this make you weary about using Dolphin HD in the future?
More like this
9
Comments
Comments are closed on this article
damobius
November 04, 2011 at 12:13pm
I've used xScope for over a year. Love it.
Tried Dolphin and it was so sluggish that I gave it up right away.
kixofmyg0t
October 31, 2011 at 4:06pm
I never used this anyway. Its built from the stock browser....just with pre-loaded mal-ware! Yay!
twister753
October 28, 2011 at 4:50pm
...so?
I mean, I'd rather they didn't do it, I guess, but what's the big deal?
MeanSquare
October 28, 2011 at 4:33pm
Oh yeah, it's a real issue that a browser is taking the URLs I happen to visit and sending them, without _any_idenifying_information_ that will tie them to me, in order to facilitate converting sites to "webzine" formatting. _Only_ the URL is sent; no other information, either content of indentification.
The _only_ suggestion I have is that the user should be informed that the program is doing this and have the option to opt in (opt out as the default), if so desired.
All FUD aside, This has absolutely no serious security repercussions that I can think of.
This "amateur solution" is pretty much the only way to do this without loading down every single user's phone with a duplicate database. I rather prefer it to be done elsewhere without using my resources.
maseone
October 29, 2011 at 1:22am
Funny thing is, in the midst of all this (had been loving the dolphin mini browser) I tried Maxthon browser. Very similar to Dolphin but a much cleaner interface. Will probably not be going back to Dolphin. Regardless of what people's personal opinions are in regards to privacy vs security - this needs to be an option that can be turned off to be taken seriously as a solution
hk1777
October 28, 2011 at 6:47pm
I told you we cant keep stopping at every Sop, Yeld and one vay sign
KenLV
October 28, 2011 at 3:33pm
I was already uninstalling since the latest update broke it's interaction with Xmarks - the reason I installed it in the first place! Guess I'll do it sooner rather than later.
devin3627
October 28, 2011 at 3:22pm
hey lets deactivate our firewall and our virus software. it makes your system so fasT!!!!!! :) :) :)
Connect with MaximumPC
Featured Content
The gang discusses the GTX 690, Trinity, Ivy Bridge, Amazon, big-box stores, MMOs,...
This month's issue
Feature
Build a PC On Any Budget
Feature
Cloud Services Showdown
How-To
Encrypt Your External Drive
Build It
Upgrade an X58 Rig
Most Commented Articles
Latest Max PC Tweets
- maximumpc: Original RickRoll Video Returns to YouTube After 24-Hour Copyright Hiatus http://t.co/MaH9Sxyy2 days 4 hours ago
- maximumpc: Corsair has decided not to go forward with its $78 million IPO, citing weak equity market conditions http://t.co/A5a4DAzj2 days 4 hours ago
- maximumpc: Want to work at Maximum PC? Our Online Managing Editor, Alex, is moving away, so we need a new one. http://t.co/9Z7JCh0E4 days 1 hour ago
