Passwords are not stored unencrypted. They are stored encrypted in the "login data" file in %localappdata%\Google\Chrome\User Data. Open it in notepad and see for yourself.
This article is talking about a user option to show passwords inside of the Google Chrome settings menu. From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On Behalf Of Kennedy, Jim Sent: Wednesday, August 7, 2013 3:04 PM To: ntsysadm Subject: RE: [NTSysADM] Google Chrome stores passwords in plaintext Passwords are being stored unencrypted, that is point enough. Imho. From: listsad...@lists.myitforum.com <mailto:listsad...@lists.myitforum.com> [mailto:listsad...@lists.myitforum.com] On Behalf Of Andrew S. Baker Sent: Wednesday, August 07, 2013 3:03 PM To: ntsysadm Subject: Re: [NTSysADM] Google Chrome stores passwords in plaintext But you can get it without physical access... that's the point. ASB <http://xeeme.com/AndrewBaker> http://XeeMe.com/AndrewBaker Providing Virtual CIO Services (IT Operations & Information Security) for the SMB market. On Wed, Aug 7, 2013 at 2:40 PM, David Lum <david....@nwea.org <mailto:david....@nwea.org> > wrote: Saw that. Not sure how much I care, as it's been said many times once you give up physical access all bets are off. As the Chrome guy says "We want to be very clear that when you grant someone access to your OS user account, that they can get at everything". Dave From: listsad...@lists.myitforum.com <mailto:listsad...@lists.myitforum.com> [mailto:listsad...@lists.myitforum.com <mailto:listsad...@lists.myitforum.com> ] On Behalf Of Micheal Espinola Jr Sent: Wednesday, August 07, 2013 9:22 AM To: ntsysadm@lists.myitforum.com <mailto:ntsysadm@lists.myitforum.com> Subject: [NTSysADM] Google Chrome stores passwords in plaintext http://www.theguardian.com/technology/2013/aug/07/google-chrome-password-sec urity-flaw No obfuscation to the casual snooper, no master password, no nothing. This is the same thing that Firefox caught flack for 3 years ago. -- Espi
