Security researcher Alexander Hanff has recently discovered that Google Chrome is performing a silent install of a 4GB AI model, Gemini Nano, onto users’ computers worldwide without prior notice, exposing how Google bypasses user consent with unattended installs.
Many users started wondering why their hard drive space is disappearing. While we often expect our browsers to stay updated, the sneaky arrival of a massive AI program might feel disturbing for some.
A Leachy Passenger on Your Hard Drive
The technology in question is Gemini Nano, a version of Google’s AI designed to run locally. This unattended installation happens in the background, allowing computers to handle tasks like summarizing text and detecting scams without sending data to the cloud.
Google applies specific silent switches within its update process to trigger these downloads based on whether your hardware meets the necessary requirements. However, the way this software arrives is what experts like Hanff have worried about.
According to his research, if your computer is powerful enough, Chrome simply performs a silent install of the 4GB file. This type of silent software deployment means most people would never know the file was there unless they went searching through their system files for a folder named “OptGuideOnDeviceModel.”
Hanff explains that because the browser does not surface the file, users remain unaware of this unattended install unless they are specifically looking for it. Google justifies this by pointing to their terms of service, which states they may automatically update software to improve security and features.
“The model will automatically uninstall if the device is low on resources,” a Google spokesperson told Gizmodo, on how the system is smart enough to manage itself.
While this may sound efficient, the Chrome unattended install of Gemini has raised questions about whether users should have more control over their own bandwidth and storage.
Google Convenience Means No Privacy
First of all, why would a multi-billion-dollar company like Google want to put its AI on your personal machine, without your consent in the first place?
Hanff suggests the motivation might be financial. By moving the thinking process of the AI from Google’s expensive data centers to your personal processor, the tech giant can save a fortune on computing costs.
Hanff also notes that this silent install allows Google to push features without paying for the massive compute to power themselves. This silent deploy software strategy effectively offloads the work onto the consumer.
Beyond the cost, there are serious legal and ethical questions. In regions like Europe, strict privacy laws require companies to be fully transparent about any unattended installation. Hanff believes this silent install may violate principles of fairness.
He argues that this zero touch installation approach skips the dialogue required by law.
“So, I suspect they figured asking permission (what the law requires) would hinder their ability to push this model and, of course, whatever comes after it,” Hanff told CNET regarding the silent software installation process.
On the other hand, there are still options if you want to run away from this unattended install. Users can investigate your Chrome settings under the ‘System’ menu to see if an off switch has appeared.
Alternatively, tech-savvy users can type ‘chrome://flags’ into their address bar to find the silent switches that manage the optimization guide. By disabling these, another silent install can be prevented and stop the unattended installation from recurring.
AI’s becoming a bigger part of our digital lives, and the conversation is no longer just about what Big Tech’s technology can do, but about who truly controls our devices.
Inside Telecom provides you with an extensive list of content covering all aspects of the tech industry. Keep an eye on our Cybersecurity sections to stay informed and up-to-date with our daily articles.