Slashdot Mirror

← Back to Stories (view on slashdot.org)

Google and Facebook Top Biggest Web Tracker List

Posted by samzenpus on from the I-see-what-you-did-there dept.

itwbennett writes "A new report from Evidon, whose browser plug in Ghostery tracks Web trackers, makes it plain that 'if you want to worry about somebody tracking you across the Web, worry about Google,' writes blogger Dan Tynan. Google and Facebook, and their various services, occupy all of the top 5 slots on the Evidon Global Tracker Report's list of the most prolific trackers. 'And if you have any tracking anxiety left over, apply it to social networks like Facebook, G+, and Twitter,' adds Tynan."

22 of 103 comments (clear)

  1. Collusion plugin by Anonymous Coward · · Score: 5, Interesting

    Check out the Collusion plugin from Mozilla if you want to see for yourself who is tracking you and the relationships between them. Has a nice graphical overview.

    http://www.mozilla.org/en-US/collusion/

    1. Re:Collusion plugin by Anonymous Coward · · Score: 2, Insightful

      I wonder if everyone else noticed that the top two "tracking" sites are also the top two most visited sites on the internet.

      Lesson for the day... that's not a coincidence. Everyone wants to capitalize on information in one way or another. The bigger your reach, the more information you have to work with.

      Neither says anything about what they're doing with that information. That's the really important part.

  2. Ghostery by agoliveira · · Score: 4, Informative

    I suggest this Firefox extension. Works quite well for me.

    --
    Scientia est Potentia
    1. Re:Ghostery by zornorph · · Score: 2

      Another one that I like is Collusion. Still listed as experimental though:

      Collusion is an experimental add-on for Firefox and allows you to see all the third parties that are tracking your movements across the Web. It will show, in real time, how that data creates a spider-web of interaction between companies and other trackers.

      --
      http://bike.stu.ph/rides - free GPS routes available for Garmin, Magellan, GPX and Google Earth
    2. Re:Ghostery by cpu6502 · · Score: 3, Informative

      Um..... extensions usually do have the same name, regardless of browser. Not only is it called "Ghostery" on Firefox and Chrome, but also Microsoft's Explorer, Apple's Safari, and Opera's Opera.

      --
      My AC stalker: " I personally agree with your posts most of the time, but that won't keep me from modding you troll"
  3. Food for thought by Missing.Matter · · Score: 4, Insightful

    Google derives 96% of its revenue from advertising. All those shiny "free" Google services you love to play with are the result of their ability to monetize information they gather about you. Without tracking, there is no Google. Just keep that in mind.

    1. Re:Food for thought by gl4ss · · Score: 5, Insightful

      they should just focus adverts based on what I'm viewing right now and then. NOT by what I viewed a week ago. NOT by what someone else viewed from the same browser a week ago. I'm doing a search for "fucking inkjet cartridges" then fuck, advertise me some fucking inkjet cartridges and porno then. NOT FUCKING AFTER I'VE ALREADY BOUGHT BOTH AND AM ACTUALLY SEARCHING FOR A FUCKING GOOD BROWNIES RECIPE!!!!

      the tracking... IT DOES NOTHING, but billions spent on it regardless. how do they know the tracking is "working" in getting you the advertisements you want? well, because they're fucking tracking it so their tracking proves that the tracking experts should be paid lots and lots of money.

      --
      world was created 5 seconds before this post as it is.
    2. Re:Food for thought by Hatta · · Score: 4, Interesting

      All I use Google for is search. I'd gladly pay for a non ad infested version. Google serves too many masters to be a decent search engine anymore.

      --
      Give me Classic Slashdot or give me death!
    3. Re:Food for thought by bobbied · · Score: 3, Funny

      I'm thinking that you need to keep the "safe search" option turned on if you type that stuff into Google and expect to actually find a recipe for brownies anywhere near the top of the list.

      --
      "File to fit, pound to insert, paint to match" - Aircraft Maintenance 101
    4. Re:Food for thought by Shihar · · Score: 4, Insightful

      Eh. Who cares? Google trying to make really good ads for me rates pretty damn low on my list of concerns. Hell, if they actually manage to get me to click on a link, it means they found something that I actually care about. I call that a win. I will happily take a good book recommendation that I actually would like to know about over a dancing baby trying to sell me a better mortgage.

      Targeted advertising just isn't scary. It is good. Google having that kind of information doesn't scare me.

      Where Google and the like become scary is when our own government steps in. I don't care if Google tries to sell me stuff that I want. That is a service. I do care if the government can track down my various aliases and I run into trouble with the law because I vocally declare drug laws and the TSA dumb. Google isn't the problem, it is when my government forces Google to divulge information on me that we have a problem.

      Facebook is little worse than Google. Their targeted advertising is perfectly fine, but their constantly shifting privacy settings that desperately want to share private drunk pictures with my boss is fucking annoying.

  4. Is anyone surprised? by Dins · · Score: 3

    This is why I stay logged out of my Google account whenever possible and only access Facebook when I absolutely have to. Privacy is dead. Google talks a good talk with "Don't be evil", but actions speak louder than words. And Facebook might be the biggest enemy of privacy on the web right now.

    1. Re:Is anyone surprised? by CanHasDIY · · Score: 5, Insightful

      Facebook might be the biggest enemy of privacy on the web right now.

      I don't think so.

      --
      An enigma, wrapped in a riddle, shrouded in bacon and cheese
    2. Re:Is anyone surprised? by Hatta · · Score: 5, Interesting

      Do you think logging out really does you any good? Chances are you can be uniquely identified from your browser's user agent string. Google remembers your IP. Google remembers the searches you do from that IP. Google has a bug on just about every website out there.

      If you want to avoid Google, you need to use it only from a deidentified browser, behind an anonymizing proxy. You need to reject all scripts from Google, and reject all cookies. If you do all this, it will be a pain in the ass to get any work done, and I'm still not sure they won't be able to figure out who you are.

      --
      Give me Classic Slashdot or give me death!
    3. Re:Is anyone surprised? by Errol+backfiring · · Score: 2

      Off course I reject all scripts from Google. And I use Ixquick for search. Third-party cookies should be disabled by default in modern browsers (and often are).

      --
      Nae king! Nae laird! Nae yurrupiean pressedent! We willna be fooled again!
  5. Request Policy by Anonymous Coward · · Score: 2, Informative

    For Firefox I use the Request Policy add-on to block 3rd-party requests. This helps prevent cross-site request forgery (CSRF) as well.

  6. Back in the day... by LordLucless · · Score: 3, Informative

    Does anyone remember, back in the day, when browsers shipped configured so that all cookies set had to be explicitly authorized to be set? Remember how the first thing everyone did was change their configuration to auto-accept? Remember how browsers eventually changed to just have that setting by default?

    A site cannot track you across third-party sites. Not unless you let them. It's just that users have deferred that responsibility to their browser's configuration, and are now complaining that they've been granting authorization to let these sites track them. The result is articles like this, and heavy-handed legislation like the EUs recent cookie-ban. All because users are too lazy and ignorant to take the responsibility on themselves. Hell, with modern browsers and addon/extension models, you don't even need to use the coarse-grained approach that old-school browsers used. Just a plugin that let's you whitelist cookies.

    But it sounds like even that's too much effort for the average user. Just complain, and rely on the courts.

    --
    Just because you're paranoid doesn't mean there isn't an invisible demon about to eat your face
    1. Re:Back in the day... by Anonymous Coward · · Score: 2, Interesting

      They can track you by your browser's agent string (and even better when pairing it with an IP address). Research has discovered that agents strings tend to differ. If website A sees your agent string unique among it's 1 million users and website B has also seen your agent string, when they sell each other web logs they can both assume you visited both their sites. Of course it's not 100% exact, but it's statistically good enough to make that profile connection. Have you cleaned your agent string and other browser trackes lately?

      In addition, websites make it harder and harder to not enable cookies. They'll keep redirecting you to a 'choose your location' page or toss up an error saying the site requires cookies to function. Luckily I love eating cookies and never go hungry when browsing the web. I'm about to munch on the FIVE I have relating to slashdot. One from slashdot and the other four with referrer info relating to links I've clicked on from here.

      Why do I have a jobs.slashdot.org cookie? I don't have a slashdot account.

    2. Re:Back in the day... by LordLucless · · Score: 2

      GET session IDs, rewritten URLs and HTTP referrers don't help track users.

      In case you're unaware, the way this tracking works is by the tracking party embedding an image on a third party page (for Google, this is usually adwords, for Facebook, it's the like buttons). When a user hits that image, they send a request to the tracking party's server to fetch the image. Along with that request, it sends the cookies for that domain. The tracking party can then determine that the user with that cookie, visited third-party page X.

      GET variables, mangled URLs, HTTP referrers - these can be used to track someone within a site (and are very useful for maintaining session), but none of them can be used to track you across third party site, because to do so would mean the third party site would have to serve up unique content for each user.

      The one valid issue you raised was the user agent string, and while it's not guaranteed unique, research shows it's often good enough to do a reasonable job, although I don't know if any companies do use it that way, since simple cookies are nigh-ubiquitous. I agree it's an issue, but it should be a simple, technological fix. There's no good reason for browsers to share so much information via their agent strings. For those who are concerned about tracking, installing a agent-string switching addon is simple enough. I agree they shouldn't need to, and maybe the focus on tracking will get the major browser vendors to change their default behaviour, but it's not like "opting out" of the tracking is at all difficult.

      --
      Just because you're paranoid doesn't mean there isn't an invisible demon about to eat your face
  7. Re:Don't worry by vux984 · · Score: 5, Insightful

    If you were riding a bus, would you expect everyone to cover their ears?

    I expect them to "hear" but not deliberately "listen", certainly not to "record", and absolutely not to maintain a linked set of recordings they have made of me at different times I have been on the bus.

    This is the social contract most normal people live by.

     

  8. noooo really? by Osgeld · · Score: 2

    Next you will be telling me the sky is blue, and water is wet. Thanks for the report Sherlock!

  9. Perfect Brownies by improfane · · Score: 4, Informative

    I agree with you.

    Just thought I'd share my ultimate brownie recipe with you. Take a saucepan and start melting real butter (125g) and chocolate (185g) and melt on a low heat. Then add 50g flour, 40g Cocoa and 275g sugar. Stir into mixture and then add three eggs. Pour into a greased or papred tin and place in oven for about 25 minutes and they're delicious. They're not to dense or light and they are rich but not overpowering.

    You can also mix in chocolate chunks or nuts to make it even nicer.

    --
    Slashdot needs Geekcode | Can anyone recommend any good SCIFI? My tastes: Foundation, Startide Rising, CITY, Ringworld,
  10. Ghostery: Breaks far fewer things than NoScript by Sarusa · · Score: 2

    I use NoScript myself (and Ghostery), but most people can't deal with how you have to selectively allow javascript domains to get new sites to work under NoScript.

    Ghostery accomplishes most of what you want (don't track me, don't steal my info) effortlessly while breaking almost nothing. So you can install it for anyone and not worry too much they'll come complaining to you.

    Also, the Ghostery list on any page is freaking scary (Slashdot has only two items). And I'd say 99% of sites are using Google Analytics (including Slashdot).