I have encountered a critical security issue, but I am not sure whether it’s related to Brave Browser or Bitwarden.
I have set Brave Browser to always log me out of websites when I close the browser, so it does not remember my login credentials. However, I have noticed that sometimes, after restarting my computer, I can still access my email without entering my login details or even the two-factor authentication (2FA) code.
This is a serious security concern, as it means that my session is somehow being preserved despite the browser being set to clear all login data.
Has anyone else experienced this issue? Could this be a bug in Brave Browser, or is it related to Bitwarden? Any help would be greatly appreciated.
I am logged in.
It looks like, even though I have enabled the setting for Brave browser to delete cookies upon exiting the browser, when I shut down the computer, Brave does not behave as if I am leaving the application.
My version of brave is 1.76.73
I am just minimalizing it. But still turn off the whole computer should close the browser. I tried this in firefox and this didn’t work. So it seems like that by turning off whole computer you won’t close the brave browser but firefox yes. So I think this is a bug.
I was installing Brave Browser few days ago. And I setup to delete cookies aftere closing the browser and also setting this “On startup” to be Open the New Tab page but still if I turn off computer then the cookies should be deleted as well right? Or they are deleted only when I have Continue where you left off? But I see that it is in the process to be fixed in the future. So nevermind then.
