fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Microsoft Disables Google’s FLoC Tracking In Microsoft Edge, For Now

Microsoft Disables Google’s FLoC Tracking In Microsoft Edge, For Now

Microsoft has disabled Google’s controversial FLoC browser-based tracking feature in their Chromium-based Microsoft Edge browser.

This month, Google began testing a new tracking platform called Federated Learning of Cohorts, or FLoC, that places users in anonymous buckets, or cohorts, based on their interest and browsing behavior.

Unlike third-party cookies used by advertisers to track your behavior and interests across different sites, FLoC  is built into the web browser, which assigns you to behavior cohorts and shares that information with websites and advertisers.

As FLoC is a Google browser-based feature, it is currently only supported on Google Chrome and Chromium-based browsers through a component named ‘Federated Learning of Cohorts.’

Chromium 90 build with Federated Learning of Cohorts component
Chromium 90 build with Federated Learning of Cohorts component

Also Read: Data Protection Officer Singapore | 10 FAQs

When building Chromium-based browsers, Google has enabled support for FLoC by default, as shown in Chromium’s source code.

This means that other companies who develop Chromium-based browsers, such as Microsoft Edge, will automatically have the component installed as well unless they specifically disable it.

Such is the case with Microsoft Edge, where FLoC has not been enabled, and the component is not available in the browser even if enabled via command-line arguments.

Browser components enabled in Microsoft Edge
Browser components enabled in Microsoft Edge

When we reached out to Microsoft to confirm if FLoC was intentionally disabled, we were not given a clear answer. Microsoft instead pivoted to their favoring of a Microsoft-led proposal called PARAKEET.

“We believe in a future where the web can provide people with privacy, transparency and control while also supporting responsible business models to create a vibrant, open and diverse ecosystem. Like Google, we support solutions that give users clear consent, and do not bypass consumer choice. That’s also why we do not support solutions that leverage non-consented user identity signals, such as fingerprinting. The industry is on a journey and there will be browser-based proposals that do not need individual user ids and ID-based proposals that are based on consent and first party relationships. We will continue to explore these approaches with the community. Recently, for example, we were pleased to introduce one possible approach, as described in our PARAKEET proposal. This proposal is not the final iteration but is an evolving document.”

– Microsoft.

However, in conversations with people familiar with Microsoft’s plans, we were told that they plan to wait and watch how FLoC evolves before committing to any particular platform.

Other developers reject or hold off implementing FLoC

Other browser developers are also holding off on implementing FLoC in their browsers to see how the tests go and how people react to it’s test.

In a statement shared with BleepingComputer, Mozilla states that they are currently evaluating various advertising proposals but have not implemented any of the platforms in Mozilla Firefox.

“We are currently evaluating many of the privacy preserving advertising proposals, including those put forward by Google, but have no current plans to implement any of them at this time.

We don’t buy into the assumption that the industry needs billions of data points about people, that are collected and shared without their understanding, to serve relevant advertising. That is why we’ve implemented Enhanced Tracking Protection by default to block more than ten billion trackers a day, and continue to innovate on new ways to protect people who use Firefox.

Advertising and privacy can co-exist. And the advertising industry can operate differently than it has in past years. We look forward to playing a role in finding solutions that build a better web.”

– Mozilla.

While Apple has not made a public statement about whether they support FLoC, Safari browser engineer John Wilander, who works the Tracking Prevention feature, has stated that they will wait and see as well.

Also Read: Practitioner Certificate In Personal Data Protection: Everything You Need To Know

However, privacy advocates and browser developers, including Brave, Vivaldi, the EFF, and DuckDuckGo, have already stated that they believe FLoC is a bad idea and will not be supporting it.

Even with the lack of support from browser developers and privacy advocates, with Google holding close to a 70% web browser market share, it may be challenging to get rid of FLoC at this point for those who use Google Chrome.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us