Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Imagine trusting Brave to be your browser:

1º Injecting affiliate codes into users url's without consent:

    https://davidgerard.co.uk/blockchain/2020/06/06/the-brave-web-browser-is-hijacking-links-and-inserting-affiliate-codes/

 2º Scamming people into thinking they are giving donations to content creatos:
https://web.archive.org/web/20190606100032/https://twitter.c...

Brave is always behind in security patches to Chrome by design, Google first need to push the patch to Chromium, Brave need to grab that patch and adapt it to Brave.

Brave adds new potentially security issues with all the modificatios and code they add to it.



Both have been reversed, and both were addressed convincingly (that these were true mistakes, not misbehavior they walked back).

https://www.theverge.com/2020/6/8/21283769/brave-browser-aff...

https://www.reddit.com/r/brave_browser/comments/a8d34y/youtu...

It's suspect to me that every thread that mentions Brave attracts such bizarre vitriol, with people who keep rehashing old arguments (which are off-topic and never with any actual context so people can make up their own minds). Haven't


I don't use Brave and I'm not shilling for it, but it does consistently rate high in privacy research:

https://privacytests.org/

https://arstechnica.com/information-technology/2020/03/study...


It should be noted that the person behind privacytests.org is a current Brave employee. That said, I haven't seen any signs of compromise yet; it makes sense that privacy-focused developers end up at privacy-focused companies.

However, you can have a good privacy record for protecting users from third parties and still make bad decisions. Not informing users about what websites do or do not take part in the crypto collection programme from the start was a bad decision IMO. Altering URLs to insert referrer codes is also a bad idea. This doesn't mean Brave doesn't try to protect your privacy, but it's still quite user hostile in my opinion.


> the person behind privacytests.org is a current Brave employee

I wasn't aware of this, thanks. It doesn't seem like such a good impartial reference now :/

> and still make bad decisions

Agree 100%. I hope the Binance fiasco scared Brave into being more honest, and resulted in more scrutiny of their codebase.

One more misstep like that and I'd consider Brave completely untrustworthy, regardless of privacy scores or research paper findings.


> This website and the browser privacy tests are an independent project by me, Arthur Edelstein. I have developed this project on my own time and on my own initiative. Several months after first publishing the website, I became an employee of Brave, where I contribute to Brave's browser privacy engineering efforts.

Don't ever link such biased website shilling for Brave.


As I said above, I wasn't aware of this.

You might also consider improving your tone.


Hi green handle. Don't parrot David, he lies about us blatantly. https://news.ycombinator.com/item?id=31088604

We reduce Chromium attack surface while keeping up within ~12 hours of updates: https://github.com/brave/brave-browser/wiki/Deviations-from-...




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: