Hot Topics

cookies

Google Android malware

Google Kills 3rd-Party Cookies — but Monopolizes AdTech

| | adtech, Advertising, Advertising and AdTech, adverts, cookie, Cookie Consent, cookieconsent, cookies, FLEDGE, FLoC, Privacy, Privacy Sandbox, SB Blogwatch, Topics, tracking cookies, web cookie
Firefox looking good right now: “Privacy Sandbox” criticized as a proprietary, hypocritical, anti-competitive, self-serving contradiction ...
Security Boulevard
Google Chrome 3rd Party Cookies Crumbling — Finally!

Google Chrome 3rd Party Cookies Crumbling — Finally!

| | Chrome, cookie, cookies, FLoC, google, omnomnomnomnomnomcookie, Privacy, Privacy Sandbox, SB Blogwatch, Topics, tracking cookies
Om Nom Nom Nom Nom: Privacy Sandbox inching towards reality. But concerns remain ...
Security Boulevard
Google ‘Delays Making Less Money’ — Third-Party Cookie Ban on Hold

Google ‘Delays Making Less Money’ — Third-Party Cookie Ban on Hold

| | Chrome, cookies, FLoC, google, Might as well read “Google delays making less money”, Privacy, Privacy Sandbox, SB Blogwatch, Topics, tracking cookies
Google’s plan to kill third party cookies is delayed—yet again. And it’s probably not surprising ...
Security Boulevard
certificate Menlo states cyber

Shorter Certificate Cycles Shouldn’t Mean Ignoring Extended Validation

| | Certificate Life Cycle Management, cookies, extended validation certificate, tracking cookies
In terms of browser buzz, the imminent removal of tracking cookies has dominated the headlines. Chrome, for example, has announced it will remove support for third-party cookies in favor of privacy-preserving application ...
Security Boulevard
Chinese malware attack

Is Your VPN Tracking (and Leaking) User Activity?

| | Application Security, cookies, VPN, Web security
The VPN industry touts all sorts of privacy protocols and encryption methods that purport to protect users. While this is, undoubtedly, important information, and is a decent way to compare and contrast ...
Security Boulevard
Cybersecurity Researchers Targeted, Three iOS Zero-Days, Google FLoC

Cybersecurity Researchers Targeted, Three iOS Zero-Days, Google FLoC

| | Apple, cookies, Cybersecurity, Digital Privacy, Episodes, FLoC, Goolge, Hackers, ios, North Korea, Podcast, Privacy, security, technology, Third-Party Tracking, Weekly Edition, zero-day
In episode 158: Cybersecurity researchers targeted by North Korean hackers, Apple patches three iOS zero-day exploits, and details on Google’s Federated Learning of Cohorts (FLoC) which may one day replace third-party cookie ...
The Shared Security Show
Companies Can Build Accurate User Profiles from Online History, Mozilla Research Finds

Companies Can Build Accurate User Profiles from Online History, Mozilla Research Finds

| | advertiser, cookies, Digital Identity, Digital Privacy, Industry News, Internet browser, Mozilla, online profile
Users are sometimes tracked online despite no-track options Online profiles are accurate most of the time Large companies can build online profiles with little available data Advertisers can quickly identify users from ...
HOTforSecurity

Waving the White Flag: Why InfoSec should stop caring about HTTPOnly

| | Best Practices, cookies, Penetration Testing, web app security, Web Application Security
As a company that is constantly working with our penetration testing clients on understanding where they should focus their efforts, qualifying risk is second-nature to us. On one hand, we never want ...
Professionally Evil Insights
Safari

Apple Turns the Anti-Ad Thumbscrews With Safari Cookie Blocking

| | Apple, cookies, Privacy, Safari, SB Blogwatch
Apple’s latest salvo in the privacy war is to fully block third-party cookies in Safari—by default ...
Security Boulevard
It’s Okay, We’re All On the SameSite

It’s Okay, We’re All On the SameSite

| | Best Practices, cookies, CSRF, demo, Penetration Testing, programming, SameSite, web app security, Web Application Security, web penetration testing
With Google’s recent announcement that all cookies without a SameSite flag will be treated as having SameSite=Lax set by default in Chrome version 80, surely Cross-Site Request Forgery will be dead? Well, ...
Professionally Evil Insights
Load more