(Don’t) Return to Sender: How to Protect Yourself From Email Tracking (EFF)

EFF: (Don’t) Return to Sender: How to Protect Yourself From Email Tracking. “For users, there are usually ways to ‘opt out’ of tracking within your email client of choice. For mail client developers, including a few simple features can help protect your users’ privacy by default. And if you’re at an organization that does perform tracking, you can take a proactive approach to respecting user privacy and consent. Here are some friendly suggestions to help make tracking less pervasive, less creepy, and less leaky.”

BetaNews: Block more Google tracking with the latest Privacy Badger extension

BetaNews: Block more Google tracking with the latest Privacy Badger extension. “We live in an age where privacy is simultaneously highly valued and under increasing attack — and nowhere is this truer than online. The EFF (Electronic Frontier Foundation) has been fighting the corner for web users for some time, and with the latest version of its Privacy Badger extension it is helping people fight back against Google.”

Lifehacker: How Internet Ads Follow You Around

Lifehacker: How Internet Ads Follow You Around. “Internet ads are so invasive that we can’t blame you for thinking that Facebook is listening to you talk. It’s probably not, but it is helping ad networks track you across the internet and across your apps. Tech public policy expert Chris Yiu recently tweeted 14 different ways that ads follow you around the internet, even when you’re logged out, in incognito, using a different browser, or on a new device.”

Gizmodo: How to Avoid Being Tracked on Your Laptop, Phone, or Fitness Tracker

Gizmodo: How to Avoid Being Tracked on Your Laptop, Phone, or Fitness Tracker. “As you’ll be able to tell if you actually read through any of the privacy policies that appear when you sign up for a new website, install a new app, or boot up a new device, it’s just about impossible to stay completely untracked unless you’re going to retreat to an off-the-grid cabin in the woods to see out your final days. That said, there are steps you can take to at least limit some of the data that developers, tech companies, websites, and advertisers are amassing on you. Here are the key settings you need to know about for your laptop, your phone, and your fitness tracker.”

No boundaries for user identities: Web trackers exploit browser login managers (Freedom to Tinker)

Freedom to Tinker: No boundaries for user identities: Web trackers exploit browser login managers. “We show how third-party scripts exploit browsers’ built-in login managers (also called password managers) to retrieve and exfiltrate user identifiers without user awareness. To the best of our knowledge, our research is the first to show that login managers are being abused by third-party scripts for the purposes of web tracking. The underlying vulnerability of login managers to credential theft has been known for years. Much of the past discussion has focused on password exfiltration by malicious scripts through cross-site scripting (XSS) attacks. Fortunately, we haven’t found password theft on the 50,000 sites that we analyzed. Instead, we found tracking scripts embedded by the first party abusing the same technique to extract emails addresses for building tracking identifiers.”