Last week was memorable not only new challenges Apple with access to personal data in the iOS. Soon, similar problems can arise, the company Google, which has found a way to get around the privacy settings in the desktop and mobile Safari, and followed by users through advertising on many popular sites.
By default, the mobile and desktop versions of Safari included blocking third-party files cookie, coming from advertisers and other domains, other than the one on which the user is at the moment. However, Google has found a loophole that allows to circumvent these restrictions, and conceal a third-party cookies for the main, the work which is just resolved:
Although most of the features for tracking a user is blocked, Safari makes an exception for certain sites, which interact with people – for example, filling a web form. So Google has added a special code in some advertisements and handed an invisible form, resulting in Safari allowed to install any third-party cookie.
And as soon as the files got on your computer or smartphone user could install a third party (even despite the obvious privacy settings) an unlimited number of follow-party cookie because of flaws in the browser.
As soon as journalists The Wall Street Journal contacted Google and asked to comment on their actions, the company tried to get out and dump all the blame on Apple:
The Wall Street Journal correctly describes what happened and why. We just used the well-known functionality of Safari, to provide some opportunities for logged users Google. These files are not advertising collects personally identifiable information.
The author of one of the technology blog WSJ notes that found a loophole in Safari has been closed in WebKit – a project with open source software, which is responsible for renderig web pages in Safari, Chrome and many other products related to the web. Therefore, in the near future we will publicly update your browser.
This problem was discovered at Stanford University graduate student Jonathan Meyer (Jonathan Mayer), who published a great article on his blog with additional technical details about how Google and other advertising companies bypass privacy settings Safari. A few days later the problem was confirmed by an independent technical consultant Ashkanom Soltani (Ashkan Soltani).
Experts and ordinary users have sharply criticized the search giant, which gets the lion’s share of revenue from contextual advertising. They say it is totally unacceptable, because this way they behave, some malicious sites (as early as 1996 a special working group of the Engineering Board of the Internet equated to a third-party cookies are serious threats to privacy on the Internet):
The really shocking that the very smart people at Google have found this loophole and figured out how to use it for their own purposes. Do they not think about the ethical aspects of their work?
In general, the slogan «Don’t be evil» in all its glory.