I noticed a media disk drive grinding away the other day, nothing made sense to be causing it. Turns out Chrome now scans all your drives and sends executables back to Google by default or something (software_reporter_tool.exe), even if you are a software developer in competition with them (practically all software developers since Google are essentially all-encompassing at this point).
Is it intuitive to anyone that a third party web browser would be doing this by default?
If you're sure that's actually Google's application doing it, and can show it happening with clear evidence, then I recommend reporting it to the media and everyone else you can think of. That sort of behaviour is essentially espionage and I'm sure it would be enough to get Chrome banned from many places which were previously happy to use it.
> In addition, if you have opted in to automatically report details of possible security incidents to Google, Chrome will report information about unwanted software, including relevant file metadata and system settings linked to the unwanted software found on your computer.
I don't think I ever opted in to this but they may have have had tricky wording or I just didn't catch it. From searching around, there seems to be no way to opt out of the scan itself (not the submission) except denying read permissions to the software_reporter_tool.exe's folder. So if you have spinning drives that you want to keep idle when not in use, for power and longevity reasons, you are SOL without remembering each time you setup a machine.
After installation, programs should not engage in deceptive or unexpected behavior. Some examples of deceptive or unexpected behavior include:[...]Preventing the user from controlling the software[...]The user must have a meaningful opportunity to review and approve any principal and significant updates or settings changes.
Disclosure is especially important if data collection is a non-obvious feature of the software.
Pure unadulterated hypocrisy. Not surprising coming from Google.
> Don't scare the user. Software must not misrepresent the state of the user's machine to the user, for example by claiming the system is in a critical security state or infected with viruses.
Yet Google Chrome continues to tell users that many harmless executables are malware even after they have been informed of the false positive many times.
Maybe they should prevent people from downloading Chrome instead.
It has done this for years. Its not new behavior. Also why I use Firefox and Comodo Firewall. I would remove all privs on the file in Windows to stop it. Deleting will only be temporary.
are there recommendations for a powerful Windows firewall that can be run locally? I have noticed there are DNS calls often resolving from my machine (via pihole), but my local firewall is oblivious to those connections and never alerts me to local application making those calls.
It seems this is the same engine as ESET antivirus scanner:
>As applied in Chrome Cleanup, ESET’s technology is used by Google to alert users about unwanted or potentially harmful software attempting to get on users’ devices through stealth, for example, by being bundled into the download of legitimate software or content. Google Chrome, using ESET’s security technology, then provides users with the option to remove the unwanted software. Chrome Cleanup operates in the background, without visibility or interruptions to the user. It deletes the unwanted software and notifies the user once the cleanup has been successfully completed.
Someone might post a binary build there soon with 94 (until yesterday they only had the ancient 89), but you can build it yourself as well (on my 32-core 5950x with 64Gb RAM it took 2.5+ hours to build, just to be prepared for that).
Thank you, found it. It looks like it's not a new thing, it's been around for at least 6 years; it's possible they recently expanded its scope to scan more of one's disk which would be unfortunate. Found some details here for how to disable it: https://www.ghacks.net/2018/01/20/how-to-block-the-chrome-so...
Is it intuitive to anyone that a third party web browser would be doing this by default?