Brave browser Tor mode was a strainer


By opening a private Tor page, Brave users can have all of their HTTP requests routed through the Tor node network, thus protecting their anonymity and browsing data. This feature also allows you to safely visit sites hidden in .ONION. At least that’s what we thought.

Due to a bug in the browser, each request to a hidden site unfortunately caused a DNS request to the server configured for classic browsing. In other words, the DNS provider knows which hidden sites the user is viewing.

Brave had known about this bug since January 13 and had already fixed it in beta. But the vulnerability was made public by a Reddit user. The publisher therefore decided to deploy the patch urgently in the form of a “hotfix”. The moral of the story is that it’s best to use the original software, Tor Browser, if you want to browse the Darkweb. Such a bug would probably have been fixed more quickly. In addition, this browser includes many other protections that Brave does not have.

Source: Bleeping Computer


Source: Sécurité – 01net by www.01net.com.

*The article has been translated based on the content of Sécurité – 01net by www.01net.com. If there is any problem regarding the content, copyright, please leave a report below the article. We will try to process as quickly as possible to protect the rights of the author. Thank you very much!

*We just want readers to access information more quickly and easily with other multilingual content, instead of information only available in a certain language.

*We always respect the copyright of the content of the author and always include the original link of the source article.If the author disagrees, just leave the report below the article, the article will be edited or deleted at the request of the author. Thanks very much! Best regards!