Upgrade Storage"Security" of the browser Plugin
In my work environment all MS-Edge browser plugins are disabled by policy, and we may only use the MS-Edge browser. Realizing that I cannot enable the browser-plugin, I requested to allow it. However here is (translated automatically) the response/reasoning:
"Zotero tries to access "Microsoft\Edge\User Data\Default\Login Data", which contains saved passwords. The browser plugin triggers a security alert when it tries to access the file containing the saved browser passwords. Zotero accesses Internet servers that are used to deliver advertisements, such as "hxxps://securepubads.g.doubleclick.net". Zotero does not have a formal security certification, and there is no formal process for secure coding. Simply relying on encryption at rest and in transit is not enough. It lacks any standard cybersecurity documentation such as a SOC2 report, SSP, or ISO27001 report."
Well, there's paranoia on one side and semi-open source on the other side.
Opinions?
"Zotero tries to access "Microsoft\Edge\User Data\Default\Login Data", which contains saved passwords. The browser plugin triggers a security alert when it tries to access the file containing the saved browser passwords. Zotero accesses Internet servers that are used to deliver advertisements, such as "hxxps://securepubads.g.doubleclick.net". Zotero does not have a formal security certification, and there is no formal process for secure coding. Simply relying on encryption at rest and in transit is not enough. It lacks any standard cybersecurity documentation such as a SOC2 report, SSP, or ISO27001 report."
Well, there's paranoia on one side and semi-open source on the other side.
Opinions?
In general to "improve the security" of Windows, companies seem to install highly invasive software that track the user and program actions in addition to breaking encrypted communications just to "see" what is happening and to prevent the user from doing anything "secret".
We also run software that triggers an alert when to or more users watch the same YouTube video at the same time. Maybe these products need to to trigger alerts so that the users feel threatened all the time, but I don't really know.