Your Web Surfing History Is Accessible Without Your Permission

The Web surfing history saved in your Web browser can be accessed without your permission. JavaScript code deployed by real websites and online advertising providers use browser vulnerabilities to determine which sites you have and have not visited, according to new research from computer scientists at the University of California, San Diego.

“JavaScript is a great thing, it allows things like Gmail and Google Maps and a whole bunch of Web 2.0 applications; but it also opens up a lot of security vulnerabilities. We want to let the broad public know that history sniffing is possible, it actually happens out there, and that there are a lot of people vulnerable to this attack,” said UC San Diego computer science professor Sorin Lerner.

The researchers documented JavaScript code secretly collecting browsing histories of Web users through “history sniffing” and sending that information across the network. While history sniffing and its potential implications for privacy violation have been discussed and demonstrated, the new work provides the first empirical analysis of history sniffing on the real Web. Continue reading …

Related Posts

Test KDE Frameworks 5/Plasma Workspaces 2 using Project Neon 5 ISO If you are using a Linux desktop computer that's running the KDE desktop, it's likely that you are running a KDE 4.11 series, either version 4.11.2 or...
The National Archives releases new version of file-identification software DROID On 7 March 2011, the National Archives launched the newest version of Digital Record Object Identification (DROID), an open source, file-identificatio...
Google’s patent pledge: We won’t be the first to sue While we are waiting for some kind of reform of the US patent system, it's good too see a major technology outfit like Google going solo with regards ...
Packet Capture with Pyshark and Elasticsearch Editor: If you've been doing packet capture with Wireshark into flat files, take a break! This article shows how to do the same thing using Pyshark, a...
Let’s Encrypt enters Public Beta and inks Facebook support We’re happy to announce that Let’s Encrypt has entered Public Beta. Invitations are no longer needed in order to get free certificates from Let’s Encr...
Why is this guy betting on Julia? Julia is the name of a dynamic programming language for doing technical computing. It is not as popular as the R language, but it is not doing too bad...

We Recommend These Vendors and Free Offers

Launch an SSD VPS in Europe, USA, Asia & Australia on Vultr's KVM-based Cloud platform starting at $5:00/month (15 GB SSD, 768 MB of RAM).

Deploy an SSD Cloud server in 55 seconds on DigitalOcean. Built for developers and starting at $5:00/month (20 GB SSD, 512 MB of RAM).

Want to become an expert ethical hacker and penetration tester? Request your free video training course of Online Penetration Testing and Ethical Hacking

Whether you're new to Linux or are a Linux guru, you can learn a lot more about the Linux kernel by requesting your free ebook of Linux Kernel In A Nutshell.


One Comment

  1. Pingback: Tweets that mention Your Web Surfing History Is Accessible Without Your Permission -- Topsy.com

Leave a Comment

Your email address will not be published. Required fields are marked *

*