A new HTTP header enables websites to redirect their visitors using the Tor Browser to their more secure Onion site.
Websites are port-scanning your localhost. Here’s how to stop random websites from knowing what services are running on your device.
I got early access to Scroll, the one-stop subscription service that wants you to pay-up to save journalism.
The FreeStyle Libre 2 can push alerts to your phone when your glucose level goes out of the target range. This is an incredibly useful tool for treating diabetes, but it also broadcasts a unique identifier that makes you trackable.
Some Bluetooth Low-energy (BLE) devices support the BLE Privacy extension that makes their location harder to track. How to test if your devices support it.
Users can now opt-in to have some of their personal data be deleted after some months. The GDPR says this should be the default, however.
You must implement the Beacon API the way WebKit deems to be “the right way” to make it work on iOS, Safari, and WebKit browsers.
A small AdSense publishers’ perspective on Firefox’s new cookie-blocking policy change.
The Australian government’s new privacy-unfriendly anti-encryption interception and surveillance law succeeded in undermining my trust in Australian tech companies.
A new browser extension gives people a choice about using Accelerated Mobile Pages (AMP) versus the open web.
Ensure better privacy for YouTube videos embedded around the web with this new Firefox browser extension.
New browser extension integrates Firefox and Chrome browser histories with Windows Timeline. Well-received by the press despite negatively impacting user privacy.
The General Data Protection Regulation (GDPR) makes it clear that apps and services must delete their customers’ data when it’s no longer useful.
Brave browser pretends to be Google Chrome to avoid being blocked. You can, however, still detect it by analyzing its uniqueness.
Flattr improves customer privacy protections by automatically deleting collected data when its no longer needed for its core service.
Debian and Ubuntu have benefitted from good package reporting and analytics. It’s time Fedora Linux started collecting some more usage metrics.
Your list of RSS subscriptions is unique and it can be used to create a trackable and persistent device fingerprint.
A look at the new Google AdSense APIs for obtaining GDPR and ePrivacy consent with custom-built data-sharing consent-screens.
Firefox’s FPI system keeps websites from tracking your movements across websites. This gives excellent privacy protections but at a cost of web compatibility.
Here is what you can do to protect yourself against websites injecting tracking-code into the software installers you download.
Popular software vendors inject unique tracking identifiers when you download their installers to track you all the from the web and onto the desktop.
I found several privacy and security issues with the Vilfo VPN router during my review.
Google reCAPTCHA has a near-monopoly on CAPTCHAs. Coinhive CAPTCHA wants people to spend a few seconds mining crypto-currencies instead of solving puzzles.
Web servers store access and error logs by default. These can be a liability as they may contain personal data as per the General Data Protection Regulation.
Improve your privacy by reducing how long Firefox retains cookies. Who needs to store them for decades? Firefox can cap it at a custom interval.
Firefox Focus browser, built on WebKit, for Android has been downloaded 1 million times in a month. Whatever happen to Mozilla’s commitment to GeckoView?
Many bug tracking software leak information about your organization’s security problems through HTTP referrer headers.
Fluxfonts — the open-source anti-font-fingerprinting program — is now available for Windows 10.
Online marketers are being too aggressive with their remarketing campaigns – pushing low-value goods at a loss.
The EFF’s Privacy Badger extension auto-detects and blocks websites that track you across websites. It also breaks more websites the more you use it.
Protect against device fingerprinting using installed fonts by automatically cycling through a set of randomly installed fonts.
Grindr doesn’t use HTTPS-encryption allowing network operators and man-in-the-middle attackers to intercept private pics in the app.
An Android competitor has much better security and privacy tools than the original Android from Google.
Windows has become your password manager, but it also syncs all your credentials to Microsoft. Should you trust it with the keys to your digital kingdom?
You shouldn’t use a Windows Administrative account for your everyday use. Setup one basic and one admin account to increase security.
First-party analytics on websites generally isn’t a privacy problem. However, third-party analytic platforms tracking you across different websites is.
The new Preloading feature in Internet Explorer 11 is designed to speed up your web browsing. It also transmits a lot of information to Microsoft.
Don’t rely on third-party hosts like YouTube and embedded widgets create privacy risks for your visitors. Host it yourself!
I investigated how web browsers treat your configures location sharing permissions and policies in private browsing mode.