Scan deleted cookies not removed from Locally stored Data

  • 1
  • Question
  • Updated 2 years ago
  • Answered
I ran a scan today which reported 4 cookies deleted. My server is Google Chrome. I took a look at the number of cookies, Chrome,” content settings” recorded as “Locally Stored Data”. I was surprised to find that the number was in excess of 100.But the thing which worried me the most was the four cookies that the scan reported as having been deleted were still evident in the “Locally stored Data”. This then poses four questions on security. How does Trend Micro decide which cookies should be deleted? If 4 cookies were deleted why are they still evident in the “Locally Stored Data”? What do I need to do to ensure cookies deleted by a scan are not operating? How can I find out exactly what data/info each cookie is collecting/responsible for?
Photo of robanros

robanros

  • 70 Points
  • conserned

Posted 2 years ago

  • 1
Photo of woodartisan55

woodartisan55, Champion

  • 7,224 Points 5k badge 2x thumb

Every time you go to  these sites, you pick up cookies. The ones deleted were probably new, the ones stored were older. For instance: when I scan I get the same cookies deleted over and over from going to the same sites.

Chrome has just stored some of these. If you want to get rid of them, I believe you'll have to change your Chrome settings to do this.

Photo of TM_L

TM_L, Official Rep

  • 15,740 Points 10k badge 2x thumb
@woodartisan55 Thanks for jumping in!

@robanros Thanks for your questions. Since some of the questions deal with programming logic that would need to be provided by our product development team, we've passed the inquiry to them and want to make sure what we provide to you is as precise as possible. We'll update this topic with answers as soon as we get the responses from product development.

Trend Micro Home Users Community 
Photo of TM_L

TM_L, Official Rep

  • 15,740 Points 10k badge 2x thumb
@robanros  Sorry for the delay and thank you for your interest in how Trend Micro Security works under the hood! We’ve received feedbacks from the product development team, and here’re the answers to your questions.

1. How does Trend Micro decide which cookies should be deleted?
- Cookies are scanned and detected if they’re created on your PC from malicious websites. However, this legacy feature has been with Trend Micro Security for many years and only works for Internet Explorer cookies, and that no further enhancements are planned. That main reason is that more advanced web filtering protection features were introduced in Trend Micro Security since then, which stops the websites from being opened if you’ve enabled the website filtering feature in IE, Chrome, or Firefox, hence not giving any chance to plant malicious cookies on your computer. (Note: malicious sites are updated on a continuous basis and can be verified using our online Site Safety Center)

2. If 4 cookies were deleted why are they still evident in the “(Chrome) Locally Stored Data”? 
- Following answer to question 1, the legacy cookie detection and deletion only works for IE cookies. Chrome cookies are not included during scan.

3. What do I need to do to ensure cookies deleted by a scan are not operating? 
- As long as a cookie is stored on your PC, it can be used by the websites that uses the cookie. In your Chrome situation, since Chrome cookies are not deleted by Trend Micro Security, you'll have to manually delete using the feature in browser settings to make sure they're not operating.

4. How can I find out exactly what data/info each cookie is collecting/responsible for?
- A Chrome built-in developer tool is available to inspect what’s stored in cookies. Here’s an online article to do this easily: https://davidhancock.co/2012/11/easily-inspect-cookies-in-chrome-and-safari-without-an-extension/ How each websites uses the cookie data really depends on how each website is built.

Thanks and please let us know if your questions were answered.

Trend Micro Home Users Community
(Edited)