Brave apologises for redirecting users to affiliate links

The privacy-focused platform would revise URLs to add an affiliate code for those accessing cryptocurrency platforms

The CEO of privacy-centric internet browser Brave has publicly apologised for redirecting users visiting a prominent cryptocurrency trading platform to an affiliate link from which it profits.

When users entered the URL for Binance, “binance[dot]is”, the browser directed the user to the cryptocurrency exchange platform but through an auto-completed affiliate link, according to the Twitter user Cryptonator1337

Should the user then make a transaction on the website, Brave would receive a small profit, as a result of being a registered affiliate.

The user described this discovery as “cringe” considering Brave’s ambitions to “fix the web” by providing its users with a safe and private browsing experience.

“We made a mistake, we're correcting,” said Brave’s co-founder and chief Brendan Eich. 

“Brave default autocompletes verbatim "http://binance.us" in address bar to add an affiliate code. We are a Binance affiliate, we refer users via the opt-in trading widget on the new tab page, but autocomplete should not add any code.”

Eich added that the company is trying to build a viable business, which is currently designed around the process of paying out cryptocurrency rewards to users who choose to be served with advertisements. This is supplemented by “skin-in-game” affiliate revenue too.

Brave partnered with Binance in April, for example, to allow users to trade cryptocurrency through a widget in a ‘new tab’ page. As such, the browser attracted many users that often engage in cryptocurrency trading.

Further examination by the director of research at The Block, Larry Cermak, revealed that Brave engages in the same process for Ledger, Trezor and Coinbase, according to code published on GitHub. 

Brave has pledged to remove the feature that revised typed-in domains to add an affiliate link and has promised never to do so again.

There are worries that the incident may undermine Brave’s message and values, with the company having previously conducted research into data protection and privacy standards. For example, in April Brave launched research detailing how GDPR was being undermined by understaffed and under-resourced regulators.

Featured Resources

Managing security risk and compliance in a challenging landscape

How key technology partners grow with your organisation

Download now

Evaluate your order-to-cash process

15 recommended metrics to benchmark your O2C operations

Download now

AI 360: Hold, fold, or double down?

How AI can benefit your business

Download now

Getting started with Azure Red Hat OpenShift

A developer’s guide to improving application building and deployment capabilities

Download now

Recommended

Misconfigured Git servers lead to Nissan data leak
hacking

Misconfigured Git servers lead to Nissan data leak

7 Jan 2021
BackupAssist teams with Wasabi to offer cheaper backup for businesses
backup

BackupAssist teams with Wasabi to offer cheaper backup for businesses

6 Jan 2021
Data: A resource much too valuable to leave unprotected
Whitepaper

Data: A resource much too valuable to leave unprotected

2 Dec 2020
Webhose and Signal Corp boost data breach detection
Security

Webhose and Signal Corp boost data breach detection

7 Oct 2020

Most Popular

Citrix buys Slack competitor Wrike in record $2.25bn deal
collaboration

Citrix buys Slack competitor Wrike in record $2.25bn deal

19 Jan 2021
How to recover deleted emails in Gmail
email delivery

How to recover deleted emails in Gmail

6 Jan 2021
SolarWinds hackers hit Malwarebytes through Microsoft exploit
hacking

SolarWinds hackers hit Malwarebytes through Microsoft exploit

20 Jan 2021