Articles about cookies

EU parliament photo2 via Shutterstock

MEPs vote to update 'cookie law' despite ad industry pressure

European legislation that aims to put over-the-top services on a level pegging with their more traditional telecoms counterparts, and gives users more rights over websites tracking them, has been approved by a committee of MEPs. The proposed ePrivacy rules, which will update a directive that was last amended in 2009, have been …
Rebecca Hill, 20 Oct 2017

How Apple is taming the ad biz. Just don't expect Google or Zuck to follow

Can the world's biggest tech company tame the Wild West of the digital ad industry as its data slurping becomes ever more intrusive? Since Facebook and Google are essentially colluding with behavioural data collection, and Microsoft has given up the fight for user privacy, few companies have Apple's means or incentive. But for …
Andrew Orlowski, 22 Sep 2017
Conveyor belt production of jam-topped biscuits. Photo by Shutterstock

Planned 'cookie law' update will exacerbate problems of old law – expert

Newly proposed reforms to EU ePrivacy rules could exacerbate problems that stem from existing rules governing the use of "cookies". The plans, outlined by the European Commission earlier this year, would not resolve the problem businesses currently have in finding mechanisms for obtaining device users' consent to cookies that …
OUT-LAW.COM, 1 Mar 2017
Cookie Monster

EU tosses Europe's cookies... popups

The EU’s most famous contribution to the internet era could be snuffed out soon, and few will mourn it. As expected, Brussels will no longer mandate that websites receive the user’s consent for placing cookies on their device. Scrapping the consent form is one of the options floated in the European Commission new public …
Andrew Orlowski, 10 Jan 2017
Cookie Monster

Brussels cunning plan to save the EU: No more Cookie Popups

Beleaguered Brussels bureaucrats have come up with a cunning plan to make us love the European Union again. They might relax the world’s most hated internet regulation. Directive 2009/136/EC, also known as the "Cookie Directive" has obliged websites hosted in member states to pester users with a popup if the site uses cookies …
Andrew Orlowski, 19 Dec 2016
Cookies

Google off the hook for feeding kids bad cookies

A US court has dismissed Google from a lawsuit accusing the advertising giant of illegally tracking small children online. The US Third Circuit Court of Appeals said the Chocolate Factory will not [PDF] have to face allegations it used information about youngsters to serve them customized ads without their parents' knowledge …
Shaun Nichols, 29 Jun 2016

Fix sweetens foul cookie that kept open Aussie tax login portals

The Australian Tax Office (ATO) has crushed a cookie-related flaw in which sessions failed to close allowing the next user of a public computer to access tax records. The flaw reported to the office by Sydney Arduino tinkerer JP Liew occurs when tax payers obtain a PDF from the ATO and in doing so are directed away from the …
Team Register, 19 Nov 2015

Last week's cookie-vuln won't be the last, security bod says

In the wake of last week's cookie security warning, accomplished Polish penetration tester Dawid Czagan has dug up a separate issue with Apple's Safari. The bug Czagan has reported to Apple relates to its handling of the HTTPOnly flag, again leaving cookies open to attack. Internet Explorer too suffers from cookie domain …
Darren Pauli, 28 Sep 2015
cookies_eyes_privacy evercookies flash cookies

Verizon: FINE OK, you can now rid your life of our stalker supercookies

Verizon has finally got around to giving its subscribers the option to opt out of its controversial supercookie tracking program. Customers can find the switch in their My Verizon account settings, or by calling the toll-free number (866) 211-0874. "Verizon Wireless provides customers the ability to opt-out of our advertising …
Shaun Nichols, 31 Mar 2015

Appeal court bombshell: Google must face British justice for 'Safari spying'

Apple Safari-using Brits, who claim they were tracked by Google's adbots without permission, can sue Google in the UK, the Court of Appeal of England and Wales has ruled. "This is a David and Goliath victory," said Marc Bradshaw, one of three people taking Google, a powerful advertising giant based in Mountain View, California …
Iain Thomson, 27 Mar 2015
cookies_eyes_privacy evercookies flash cookies

A cookie with a 7,984-year lifespan. Blimey, Roy Batty only got 4!

A cookie can last 7,984 years, according to new international privacy study, far out-lasting the operational usefulness of the device (or human user presumably). The idea that some of the small files stored on a device when it is used to visit a website are programmed, to last at least as long (if not far longer) than the …
John Leyden, 18 Feb 2015
Shaun of the Dead

Super-cookie crumbles: Verizon vows to kill off hated zombie stalkers

Verizon has backed down over its fingerprinting of subscribers using so-called immortal "super cookies." In 2012, the US mobile telco started injecting unique identifying headers (UIDHs) into every HTTP request users made to websites via the Verizon network. This allowed sneaky ad agencies to recognize people as they moved …
Iain Thomson, 30 Jan 2015
Crop of doctor with pen and clipboard

Turn your head and cough (up your details), HealthCare.Gov has sprung a leak!

Researchers have spotted a security lapse on the healthcare.gov site that leaves users vulnerable to data harvesting. The Associated Press and the EFF report that the site is providing some personal information about visitors to third-party advertisors. According to the researchers, the healthcare.gov site provides …
Shaun Nichols, 22 Jan 2015
Zombie rising from the grave

Ad agency Turn turns off Verizon's zombie cookies

Online advertising agency Turn has promised to stop using repurposed Verizon undeletable cookies to track people's online habits and sell them stuff. For the last couple of years Verizon has been injecting a "unique identifier token header" (UIDH) into HTTP requests sent by customers online. It then sells that data to …
Iain Thomson, 21 Jan 2015
Zombie rising from the grave

PROOF the undead STALK Verizon users: Admen caught using 'perma-cookie'

Researchers have spotted an advertising agency using Verizon’s indestructible cookies to silently track people across the internet. Back in 2012, Verizon started injecting a "unique identifier token header" (UIDH) into each HTTP request sent through its mobile data network; these identifiers are unique to each subscriber and …
Iain Thomson, 15 Jan 2015
cookies_eyes_privacy evercookies flash cookies

Boffins plot global (browser) cookie crumb trail

Privacy laws covering the use of personally-identifiable information are, on a global scale, creating a dizzying patchwork of cookie-cutter cookie-serving companies created to sniff our Web browsing. That's one conclusion of research led by Marjan Falahrastegar at Queen Mary University, London. The group, which included …
Canvas fingerprinting

NEW, SINISTER web tracking tech fingerprints your computer by making it draw

A new, persistent web-tracking technology developed has been used to track web users across many of the world's most popular websites, including those of the White House and even wholesale smut platform YouPorn. The canvas fingerprinting technique was described in 2012 by University of California researchers (PDF) as a means …
Darren Pauli, 22 Jul 2014
blogspot

MONSTER COOKIES can nom nom nom ALL THE BLOGS

Giant cookies could be used to create a denial of service (DoS) on blog networks, says infosec researcher Bogdan Calin. Such an attack would work by feeding users cookies with header values so large that they trigger web server errors. Calin created a proof of concept attack against the Google Blog Spot network after a …
Darren Pauli, 2 Jul 2014

Create a news alert about cookies, or find more stories about cookies.

Biting the hand that feeds IT © 1998–2017