Search leakage is not FUD

Lately I’ve been accused by some of spreading fear, uncertainty and doubt (FUD) by trying to let people know their search terms are being leaked to the sites they click on. I hope to address those concerns in this post.

For those of you who have no idea what I’m talking about: when you click on a link on the Internet, where you clicked from gets automatically sent to the site you clicked on (most of the time).

For example, if you’re on yahoo.com and you click to a story at the New York Times, your browser will send to newyorktimes.com some information that you came from yahoo.com — namely, the Web address of the page you were just on. This info is called the Referrer.

At issue here is that sometimes the Referrer contains personal information. In particular, when you use most search engines, your search terms are included in the Referrer. That is, when you search on Google/Bing/etc., and you click on a link, your search terms are sent to the site you clicked on. This search leakage doesn’t happen at DuckDuckGo.

Now, let’s take the FUD arguments in turn – One site having one of my search terms is irrelevant. That may generally be the case, but unfortunately, tens of millions of sites run ads from just a handful of ad networks. Those ad networks can aggregate your search terms and piece together a large percentage of your search history.

So the question then becomes do you care if third parties (not associated with your search engine and not bound by its privacy policy) have a significant % of your search history? If you don’t care about that, then you probably don’t care about Referrers.

It’s not Google’s fault. Your browser sends that stuffContinue reading…

Related Posts

Android App Permissions Dissected Based on our recent research and feedback from our users, we know that Android permissions can sometimes be confusing. Often it is hard to tell what d...
Why security standards are Critical for the Cloud Everyone loves standards, right? When is the last time you heard a vendor proudly say that their product or service was closed and proprietary? Howe...
Top 10 upcoming Android tablets Contrary to popular belief, the iPad 2 isn’t the only tablet computer in the world. Yes, it is rather wonderful, and the game support is staggering, b...
Copyright Is Like QWERTY: Locked-In and Retrospective The term ‘path dependence’ is generally used to describe the development of technological standards and how they ‘lock in’ a given technical solution....
EFF Brief: “Privacy” Protections for Corporations Undermines Government Transp... EFF and a coalition of public interest groups urged the U.S. Supreme Court in an amicus brief Tuesday to reject so-called "privacy" protections for co...
Some File-Sharers Leave Trails To Their Front Door Following the publication of a paper which investigates how using the same username across multiple web sites may expose Internet users to scammers, T...

We Recommend These Vendors

Launch an SSD VPS in Europe, USA, Asia & Australia on Vultr's KVM-based Cloud platform starting at $5:00/month (15 GB SSD, 768 MB of RAM).

Deploy an SSD Cloud server in 55 seconds on DigitalOcean. Built for developers and starting at $5:00/month (20 GB SSD, 512 MB of RAM).


One Comment

  1. Pingback: Tweets that mention Search leakage is not FUD -- Topsy.com

Leave a Comment

Your email address will not be published. Required fields are marked *

*