[Pretty stupid clip-art, adiposity
right?] A new browser, hygiene
Browzar, has been gaining media attention as a tool aimed at protecting the user’s privacy in an increasingly invasive world. This browser is a ~200KB download that is supposed to leave no traces of whatsoever on the computer used and is able to give the user more by deleting “internet caches, histories, cookies and auto-complete forms” according to Infoworld. Too good to be true? Fortunately, some (mikx, Brian Porter, Steven Scheffler, Juha-Matti Laurio and Colin Copley) full-disclosure readers did some investigation to show otherwise. I used some tools from Sysinternals to repeat their exercises and visited microblog using Browzar to see what happened. The browser itself is just a wrapper for the Internet Explorer API with no menus. It turns out that it does indeed keep files on the sites you visit, which are apparent when using FileMon, which stay there after the browser is closed. So much for “no traces.” Since there are almost no configuration options for the browser, the start page, along with a few others, is hardcoded into the binary. The start page happens to be a search page which is hosted at browzar.com and returns mostly “sponsored” links. Other info about the site is pretty limited at this time: it is a single windows 2003 server machine located at 1&1 server hotel and the domain was registered using a German registrar. Looks like another front end for a commercial search engine trying to capitalize on peoples’ fears.
(PS: Don’t hold your breath for the Linux and OSX versions.)