Chrome Browser: Stops abusing websites in the "Back Button"

Several sites manage to bypass its operation back button, thus trapping their visitors to the site, but the chromium already has the answer to the problem.

ΑRegardless of the browser we use, we all rely on the "back" button to return to the previous page we visited. But some sites misuse the "back" button to stop us from leaving their page. The problem, however, will not persist for long in browsers based on Chromium.

According to his report Naked Security, the developers behind Chromium's code, which is based on Google Chrome and the new Edge browser, are introducing a new behavior to stop websites from abusing the button.

There are two ways in which a website can now break the "back" button. The first is by entering redirects that first load another page, which redirects the user directly to the intended site. By doing this, the "back" button simply returns to the previous page, which once again redirects back to the page you are trying to leave.

The second method is called background falsification. The "back" button is based on your history to find out which was the previous page to load. It is possible to add multiple "pushState" commands to this history, which will stop loading the previous page. These commands can be stacked, so it does not matter how many times or how fast you press the button and they will not let the previous page load.

The new upgrade introduced in Chromium means that anything added to the history without user mediation will be ignored. Thus, a redirect page and pushState commands will no longer work. This change will be available on all platforms, including Windows, Mac, Linux, Chrome OS, Android and Android WebView. It has already been approved for startup development, so it will make its appearance in a future update of browsers using Chromium soon.

Source