fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Google Chrome’s New Privacy Feature Restricts Online User Tracking

Google Chrome’s New Privacy Feature Restricts Online User Tracking

In the latest move to improve the privacy of the Chrome browser, Google is adding support for a new HTML tag that prevents user tracking by isolating embedded content from the page embedding it.

Currently, web browsers allow third-party iframes to communicate with their embedding page. This can be done using postMessage, attributes (e.g., size and name), and permissions.

In the latest move to improve the privacy of the Chrome browser, Google is adding support for a new HTML tag that prevents user tracking by isolating embedded content from the page embedding it.

Currently, web browsers allow third-party iframes to communicate with their embedding page. This can be done using postMessage, attributes (e.g., size and name), and permissions.

With browser developers restricting third-party cookies to prevent user tracking, advertising companies have proposed different programming APIs that advertisers can use for interest-based advertising.

These new interest-based advertising technologies include Google’s FLoC, Microsoft’s PARAKEET, and Facebook’s Conversion Lift.

However, when third-party cookies have been removed, these technologies should not be possible to track users by the cross-joining of data between an iframe and its embedder.

To prevent this, Google is adding a new form of embedded iframe called a “fenced frame” to isolate the embedded content and not allow it to see the user data of the embedding page.

Also Read: The DNC Singapore: Looking At 2 Sides Better

Adding Fenced Frames to Google Chrome
Adding Fenced Frames to Google Chrome

“This can be helpful in preventing user tracking or other privacy threats,” the company noted.

What are Fenced Frames?

Fenced Frames are a new form of an embedded document, and it “forces a boundary between the embedding page and the cross-site embedded document.” This change ensures that two sites cannot share your data, which would help prevent user tracking or other privacy threats.

According to Google, fenced frames have the following characteristics.

  • They’re not allowed to communicate with the embedder and vice-versa, except for certain information such as limited size information, the embedder’s top-level site, and the frame’s document url.
  • They do not have storage access (e.g., cookies, localStorage, etc.) by default.
  • They may have access to some unpartitioned user data, for example, turtledove interest group.

According to Google, fenced frames will have read-only access to some unpartitioned storage, and the API has a new element type. 

Google Chrome status page for this feature states that fenced frames are still a prototype and are not in active development.

Also Read: 4 Best Practices On How To Use SkillsFuture Credit

However, its recent addition to test builds shows that Google plans on bringing this feature to the Chrome browser in the future.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us