A security vulnerability has been found in the Google Chrome browser that allows the illegal download of DRM-protected streaming content. For example, Chrome users can download movies from Amazon Prime Instant Video or Netflix free of charge and save on their own computer. The error lies in a gap in Google’s technology to ensure the encrypted transmission of content.
The two security investigators David Livshits and Alexandra Mikityuzk have discovered the said security breach. They show that it is relatively easy to download movies from portals, such as from Amazon, by using a leak. How exactly the method works, however, is not revealed in the video. On 24 May, the two researchers have called Google to their discovery. You grant Google 90 days to close this gap. This is the number of days Google grants to its competitors if their own security experts find a gap in other systems.
Google's response was less spectacular than expected. One already knows the problem and will look more closely at the specific case. The Google spokesman stressed that the error lies in the implementation of the DRM system-Widevine. This is Google, but has not been developed by them.
Lesetipp: Netflix offline use - download function still 2017
A bug from Widevine allows you to store copies of encrypted files. Widevine is also used with Firefox and Opera. Therefore, not only Chrome is affected by this problem. The researchers have only examined Google's browser for the time being.
No comments:
Post a Comment