Posts in “Privacy”

Why we need better tracking protection

Sep 5 2018

Mozilla has recently announced a change in our approach to protecting users against tracking. This announcement came as a result of extensive research, both internally and externally, that shows that users are not in control of how their data is … Continue reading

Scanning for breached accounts with k-Anonymity

Jun 25 2018

Luke Crouch

The new Firefox Monitor service will use anonymized range query API endpoints from Have I Been Pwned (HIBP). This new Firefox feature allows users to check for compromised online accounts while preserving their privacy. Anonymizing Account Identifiers Operations like ‘search’ … Continue reading

Preventing data leaks by stripping path information in HTTP Referrers

Jan 31 2018

Luke Crouch

To help prevent third party data leakage while browsing privately, Firefox Private Browsing Mode will remove path information from referrers sent to third parties starting in Firefox 59. Referrers can leak sensitive data When you click a link in your … Continue reading

Secure Contexts Everywhere

Jan 15 2018

Anne van Kesteren

Since Let’s Encrypt launched, secure contexts have become much more mature. We have witnessed the successful restriction of existing, as well as new features to secure contexts. The W3C TAG is about to drastically raise the bar to ship features … Continue reading

Deprecating the RC4 Cipher

Sep 11 2015

April King

As part of our commitment to protect the privacy of our users, Mozilla will disable the insecure RC4 cipher in Firefox in late January 2016, beginning with Firefox 44. Mozilla will be taking this action in coordination with the Chrome … Continue reading

Tighter Control Over Your Referrers

Jan 21 2015

mozilla

17 responses

The purpose of the HTTP Referer (sic) header is to help sites figure out where their traffic comes from. However, as the Web got more complex, the amount of information in the Referer header ballooned, leading to bigger privacy problems. … Continue reading

Thoughts on Identity and Privacy

Jul 16 2010

Lucas Adamski

2 responses

I’ve posted some of my recent thinking on privacy and identity. For some time we’ve generally seen privacy treated as its own problem domain, oddly divorced from the realms of security and identity. Perhaps its time for a different approach?

Plugging the CSS History Leak

Mar 31 2010

mozilla

67 responses

Privacy isn’t always easy. We’re close to landing some changes in the Firefox development tree that will fix a privacy leak that browsers have been struggling with for some time. We’re really excited about this fix, we hope other browsers … Continue reading