1 min read

Google Chrome to Block Downloads from Unsecured Locations

Silviu STAHIE

February 11, 2020

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Google Chrome to Block Downloads from Unsecured Locations

Google is set to make significant changes to the Google Chrome browser that would eventually lead to entirely blocking the download of files from HTTP (unencrypted) sources, starting with Chrome 83.

The new measure announced by Google refers to “mixed content downloads,” including all non-HTTPS downloads started on secure pages. Eventually, Google plans to block all insecure sub-resources on secure pages.

Google plans to focus on downloaded files from unsecured locations but offered to users on secured websites. Bad actors can use this type of download to push files infected with malware or provide eavesdroppers with a way to read insecurely-downloaded bank statements.

“Starting in Chrome 82 (to be released April 2020), Chrome will gradually start warning on, and later blocking, these mixed content downloads,” explains Joe DeBlasio from the Chrome security team.

“File types that pose the most risk to users (e.g., executables) will be impacted first, with subsequent releases covering more file types. This gradual rollout is designed to mitigate the worst risks quickly, provide developers an opportunity to update sites, and minimize how many warnings Chrome users have to see.”

Google Chrome rollout schedule. Credits: Google

The rollout is scheduled to begin with Chrome 81 (March 2020), but only a console warning will be offered. Chrome 86 (October 2020) will block all content from an unsecured location, including executables, archives, documents, images, audio, video, text, and miscellaneous.

Mobile users, on Android and iOS, will get a reprieve of one release as it’s believed that the current platforms have better native protection against malicious files. Google encourages developers to migrate fully to HTTPS to avoid any future restrictions.

tags


Author



Right now

Top posts

The Holiday Guide to Tech Support: Fixing the Family Computer

The Holiday Guide to Tech Support: Fixing the Family Computer

November 24, 2021

2 min read
Bitdefender Celebrates 20 Years of Cybersecurity Leadership

Bitdefender Celebrates 20 Years of Cybersecurity Leadership

November 04, 2021

3 min read
Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

October 26, 2021

3 min read
What are drive-by download attacks and how do you prevent them?

What are drive-by download attacks and how do you prevent them?

October 25, 2021

2 min read
Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

October 22, 2021

2 min read
Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

October 20, 2021

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Iranian Threat Actor Deployed Malicious PowerShell Script through Phishing, Then Stole Files and Credentials Iranian Threat Actor Deployed Malicious PowerShell Script through Phishing, Then Stole Files and Credentials
Silviu STAHIE

November 26, 2021

1 min read
Ukraine Arrests Five iPhone Hackers of the Phoenix International Hacking Group Ukraine Arrests Five iPhone Hackers of the Phoenix International Hacking Group
Filip TRUȚĂ

November 26, 2021

1 min read
Couple arrested for secretly installing cryptomining software on department store PCs Couple arrested for secretly installing cryptomining software on department store PCs
Graham CLULEY

November 26, 2021

1 min read