Brave browser’s Tor mode unprotected users’ dim web activity

A bug in a ad restraint member of Brave’s Tor underline caused a browser to trickle users’ DNS queries

Brave, one of a top-rated browsers for privacy, has bound a bug in a Private Windows with Tor underline that leaked a .onion URLs for websites visited by users. According to a report by an unknown researcher, a browser’s built-in Tor mode – that takes private browsing to a new turn by permitting users to navigate to .onion websites on a dim web though carrying to implement Tor – was leaking Domain Name System (DNS) requests for a websites.

“If you’re regulating Brave we substantially use it given we design a certain turn of privacy/anonymity. Piping .onion requests by DNS where your ISP or DNS provider can see that you made a ask for an .onion site defeats that purpose,” reads a post.

RELATED READING: 3 ways to crop a web anonymously

The researcher found that when a ask is done for a .onion domain while regulating Private Window with Tor, a ask creates a approach to a DNS server and is tagged with a Internet Protocol (IP) residence of a requester.

“This shouldn’t happen. There isn’t any reason for Brave to try to solve a .onion domain by normal means as it would with a unchanging clearnet site,” pronounced a researcher. As a result, if we used Tor with Brave and accessed a Tor website, your internet use provider (ISP) or DNS provider competence be means to tell that a ask for that specific website was done from your IP address.


According to a tweet by Brave’s Chief Information Security Officer Yan Zhu, Brave was already wakeful of a emanate given it was formerly reported on HackerOne. It has given pushed out a hotfix to solve a issue, that was traced to a browser’s adblocking member that used a apart DNS query.

The Chromium-based browser initial expelled a Beta of Private tabs with Tor in Jun 2018 in a bid to strengthen a remoteness of users not usually on their inclination though over a network as well. “Private Tabs with Tor assistance strengthen Brave users from ISPs (Internet Service Providers), guest Wi-Fi providers, and visited sites that might be examination their Internet tie or even tracking and collecting IP addresses, a device’s Internet identifier,” reads its blog touting a new feature. In 2020 it also launched its own Tor Onion Service.

Back to Top