Unable to load image

Google Chrome extensions can be fingerprinted to track you online (actually effects all chromium browsers)

https://www.bleepingcomputer.com/news/security/google-chrome-extensions-can-be-fingerprinted-to-track-you-online

As previously disclosed in 2019, it is possible to use web-accessible resources to check for installed extensions and generate a fingerprint of a visitor's browser based on the combination of found extensions.

To prevent detection, z0ccc says that some extensions use a secret token that is required to access a web resource. However, the researcher discovered a 'Resource timing comparison' method that can still be be used to detect if the extension is installed.

"Resources of protected extensions will take longer to fetch than resources of extensions that are not installed. By comparing the timing differences you can accurately determine if the protected extensions are installed," explained z0ccc on the project's GitHub page.[/quote]

tldr: There was an old way to fingerprint based on installed extensions on chromium web browsers . Some extension makers took steps to mitigate this. The mitigation has a flaw. I have no idea wether the secret token thing is real or not because I'm only like, 20% computer nerd. So he could be fooling me (not hard) and this is just the old method

Test it yourself

https://z0ccc.github.io/extension-fingerprints/

I got 0.006% of users share the same extension

This is based on just 3 extension !

26
Jump in the discussion.

No email address required.

:#marppyenraged:

Snapshots:

Jump in the discussion.

No email address required.

darn. at least I don't use chromium but there's prob a firefox version of this

Jump in the discussion.

No email address required.

>mfw when I force the glowies to read all my hilarious comments on arr slash drama dot net

:#marseyfbicomputer::#marseychad:

Jump in the discussion.

No email address required.

You need to enable JavaScript to run this app.

Oh I see what this is. It's all an elaborate ruse for me to go to that website, run their code, and then I'll be tracked forever.

Nice try, MicroGoogleSoft.

:#marseyweeb:

Jump in the discussion.

No email address required.

59.152. Nice. Android OS brave (no extra extensions because it fricking sucks).

Jump in the discussion.

No email address required.

Affects - not effects.

Please be better

Jump in the discussion.

No email address required.

Reddit uses this btw

Jump in the discussion.

No email address required.

what's the safest browser? i also have a million passwords, so even though i know google sells my data to the chinx and cia, it's convenient.

Jump in the discussion.

No email address required.

Hardened Firefox is best for privacy. Brave is decent too but is chromium based.

For full :marseyschizotwitch: mode follow this guide.

https://www.privacyguides.org/browsers/#firefox

Jump in the discussion.

No email address required.

Tor browser

Jump in the discussion.

No email address required.

Ah shit, so there was a reason to not install the e621 extension?

Jump in the discussion.

No email address required.

Google uses hardware (keyboard, mouse, OS), browser extensions, mouse movement patterns, and IP to identify you. Try opening YouTube in incognito and watch a few videos, then see how many videos match the usual recommendations. I only watch music with incognito in short sessions so Google doesn't know I listen to Alvvays. :marseytinfoil2:

Jump in the discussion.

No email address required.

Link copied to clipboard
Action successful!
Error, please refresh the page and try again.