Browser bypasses put Google in privacy cross hairs

Feb 22, 2012 by Glenn Chapman
Privacy advocates, lawyers and powerful rival Microsoft were piling on Google for sidestepping Web browsing software to tailor ads for people signed into its online services. Snippets of code called "cookies" from Google and three online ad specialty firms slipped past tracker-blocking safeguards on Apple's Safari browser, Stanford University graduate student Jonathan Mayer said Friday in a blog.

Privacy advocates, lawyers and powerful rival Microsoft were piling on Google on Tuesday for sidestepping Web browsing software to tailor ads for people signed into its online services.

The California-based continued to staunchly defend itself meanwhile against accusations that it had put profit ahead of privacy.

Controversy ignited last week after it was revealed that ad-targeting "cookies" bypassed track-blocking software on Apple's Web browser for iPhones and computers was fanned by Microsoft saying Internet Explorer was likewise duped.

By Tuesday a suit was filed in US federal court demanding Google pay unspecified damages for violating the privacy of millions of people, and potentially national anti-wiretapping law.

Some researchers, however, said lashing out at Google did little to resolve a contradiction underpinning the complex situation -- people want free online services that know them but that remains anonymous.

Snippets of code called "cookies" from Google and three online ad specialty firms slipped past tracker-blocking safeguards on Apple's , Stanford University graduate student Jonathan Mayer said Friday in a blog post.

Microsoft on Monday said that a check showed that Google was bypassing anti-tracking mechanisms built into the Redmond, Washington-based technology titan's (IE) Web .

"Google is employing similar methods to get around the default in IE and track IE users with cookies," IE corporate vice president Dean Hachamovitch said in a blog post.

"Given this real-world behavior, we are investigating what additional changes to make to our products," he said.

Google fired back at Microsoft, saying that the company has known for years that the IE cookie blocking technique thwarted the functionality of modern websites such as and Amazon and that bypassing it was common practice.

"Instead of fixing (a) P3P loophole in IE that Facebook and Amazon exploited ...Microsoft did nothing," privacy researcher Christopher Soghoian said in a Twitter post, referring to IE's way of having cookies identify themselves.

"Now they complain after Google uses it."

Researcher Lauren Weinstein in a post at social network Google+ referred to Microsoft's complaint as seeming "disingenuous at best, and certainly is not helping to move the ball usefully forward regarding these complex issues."

Whether calculated or innocent, Google's sidestepping of privacy features on browsers raised alarms with consumer rights groups and has already prompted a call for an investigation by the US Federal Trade Commission.

Google discontinued use of the offending cookies in Safari browsers after Mayer's findings went public, and characterized the situation as an unintended side-effect of an effort to safeguard online privacy.

Google last year began using cookies in Safari browsers to let people signed into Google accounts get personalized services, such as being able to "+1" ads or other online content as likeable for friends at its online social network.

The plan was purportedly to provide users personalization requested while disclosing no information about them to Google-owned ad specialty firm DoubleClick.

Google reportedly did not realize was the presence of the cookies opened Safari browser doors to a slew of DoubleClick ad tracking cookies, which would otherwise have been rejected.

"The Safari browser contained functionality that then enabled other Google advertising cookies to be set on the browser," the California company said in a released statement.

"We didn't anticipate that this would happen, and we have now started removing these advertising cookies from Safari browsers," it continued.

Safari is the most widely used browser on mobile devices and the default browser on iPhones and Macintosh computers. The Apple browsers are pre-set to block tracking cookies.

Explore further: 'SwaziLeaks' looks to shake up jet-setting monarchy

add to favorites email to friend print save as pdf

Related Stories

Champions shaping up for browser battles

Feb 18, 2011

Google on Friday released a revved-up version of Chrome as rivals Microsoft and Mozilla beefed up their own champions for the competitive Internet browsing software arena.

They're watching you: Methods to block nosy Web advertisers

Oct 29, 2010

Virtually everything you do online is scrutinized by search engines and advertising networks that evaluate you as a potential customer based on what you search for, the sites you visit and the ads you see -- whether you click ...

Recommended for you

'SwaziLeaks' looks to shake up jet-setting monarchy

23 minutes ago

As WikiLeaks founder Julian Assange prepares to end a two-year forced stay at Ecuador's London embassy, he may take comfort in knowing he inspired resistance to secrecy in places as far away as Swaziland.

Ecuador heralds 'digital currency' plans

23 minutes ago

Ecuador is planning to create the world's first government-issued digital currency, which some analysts believe could be a first step toward abandoning the country's existing currency, the U.S. dollar, which ...

WEF unveils 'crowdsourcing' push on how to run the Web

14 hours ago

The World Economic Forum unveiled a project on Thursday aimed at connecting governments, businesses, academia, technicians and civil society worldwide to brainstorm the best ways to govern the Internet.

Study: Social media users shy away from opinions

Aug 26, 2014

People on Facebook and Twitter say they are less likely to share their opinions on hot-button issues, even when they are offline, according to a surprising new survey by the Pew Research Center.

US warns shops to watch for customer data hacking

Aug 23, 2014

The US Department of Homeland Security on Friday warned businesses to watch for hackers targeting customer data with malicious computer code like that used against retail giant Target.

User comments : 0