Categories: Firefox Privacy

Firefox 88 combats privacy abuses

We are pleased to announce that Firefox 88 is introducing a new protection against privacy leaks on the web. Under new limitations imposed by Firefox, trackers are no longer able to abuse the property to track users across websites.

Since the late 1990s, web browsers have made the property available to web pages as a place to store data. Unfortunately, data stored in has been allowed by standard browser rules to leak between websites, enabling trackers to identify users or snoop on their browsing history. To close this leak, Firefox now confines the property to the website that created it.

Leaking data through

The property of a window allows it to be able to be targeted by hyperlinks or forms to navigate the target window. The property, available to any website you visit, is a “bucket” for storing any data the website may choose to place there. Historically, the data stored in has been exempt from the same-origin policy enforced by browsers that prohibited some forms of data sharing between websites. Unfortunately, this meant that data stored in the property was allowed by all major browsers to persist across page visits in the same tab, allowing different websites you visit to share data about you.

For example, suppose a page at set the property to “”. Traditionally, this information would persist even after you clicked on a link and navigated to So the page at would be able to read the information without your knowledge or consent: persists across the cross-origin navigation. persists across the cross-origin navigation.

Tracking companies have been abusing this property to leak information, and have effectively turned it into a communication channel for transporting data between websites. Worse, malicious sites have been able to observe the content of to gather private user data that was inadvertently leaked by another website.

Clearing to prevent leakage

To prevent the potential privacy leakage of, Firefox will now clear the property when you navigate between websites. Here’s how it looks:

Firefox 88 clearing after cross-origin navigation.

Firefox 88 clearing after cross-origin navigation.

Firefox will attempt to identify likely non-harmful usage of and avoid clearing the property in such cases. Specifically, Firefox only clears if the link being clicked does not open a pop-up window.

To avoid unnecessary breakage, if a user navigates back to a previous website, Firefox now restores the property to its previous value for that website. Together, these dual rules for clearing and restoring data effectively confine that data to the website where it was originally created, similar to how Firefox’s Total Cookie Protection confines cookies to the website where they were created. This confinement is essential for preventing malicious sites from abusing to gather users’ personal data.

Firefox isn’t alone in making this change: web developers relying on should note that Safari is also clearing the property, and Chromium-based browsers are planning to do so. Going forward, developers should expect clearing to be the new standard way that browsers handle

If you are a Firefox user, you don’t have to do anything to benefit from this new privacy protection. As soon as your Firefox auto-updates to version 88, the new default data confinement will be in effect for every website you visit. If you aren’t a Firefox user yet, you can download the latest version here to start benefiting from all the ways that Firefox works to protect your privacy.