Content-type: text/html Downes.ca ~ Stephen's Web ~ No boundaries for user identities: Web trackers exploit browser login managers

Stephen Downes

Knowledge, Learning, Community

The first item in this series, describing how websites record your sessions by tracking keyboard clicks and mouse movements - was an eye-opener. This article talks about how your browser betrays you. "Third-party scripts exploit browsers' built-in login managers (also called password managers) to retrieve and exfiltrate user identifiers without user awareness." I tested it myself on their live demo page and it certainly appears to work. There's a list of sites that use this technique for grabbing email addresses and using them for tracking. Using ad blockers can help prevent this. But the best defense is to disable browser auto-fill options and use a third party password manager like 1password instead. Via Ben Werdmuller.

Today: 2 Total: 18 [Direct link] [Share]


Stephen Downes Stephen Downes, Casselman, Canada
stephen@downes.ca

Copyright 2024
Last Updated: Dec 22, 2024 11:50 a.m.

Canadian Flag Creative Commons License.

Force:yes