Mozilla details anti-tracking policies released with Firefox 63

The measures aim to mitigate the ‘harmful’ effects of ad tracking in the latest Firefox release

Firefox icon

Mozilla has published its revamped privacy policy for the Firefox internet browser, detailing a recently-implemented set of anti-tracking measures for the first time.

In a wiki document, the firm has outlined how it blocks cookie-based cross-site tracking of user activity, as well as websites tracking users through unintended identification techniques such as 'browser fingerprinting'.

Mozilla's anti-tracking mitigations, first announced in August as part of a three-pronged approach to bolstering user privacy, were released with version 63 of the Firefox browser in October last year.

"This document describes the online tracking practices that Mozilla believes, as a matter of policy, should be blocked by default by web browsers," the company said. "These practices are potentially harmful to users and cannot be meaningfully understood or controlled by users."

By default, the firm will block cookies and other forms of identifiers that are used by third-parties to build profiles of users by tracking their activities across several sites and platforms. Firefox is also planning to block URL-enabled tracking, in which the URLs to certain sites are decorated with identifiers.

Unintended identification techniques, such as browser fingerprinting which is used to identify a user based on the properties of the browser, the device or network, will also be blocked, possibly in future releases.

'Supercookies' will similarly be in Mozilla's line of sight, referring to a collection of techniques that involve storing trackers in parts of the browser that aren't cleared when users conventionally delete browser data.

To enforce its new policies the firm will rely on a Tracking Protection list, curated by third-party organisation Disconnect, to classify existing trackers.

"This is about more than protecting users - it's about giving them a voice," said Mozilla's vice president for Firefox Nick Nguyen, announcing the move in August.

"Some sites will continue to want user data in exchange for content, but now they will have to ask for it, a positive change for people who up until now had no idea of the value exchange they were asked to make."

Elsewhere, despite touting its own pro-privacy credentials, Firefox users have, untilnow, experienced a flaw that allows third-party extensions to operate in its private browsing mode by default.

The company will finally address the oversight, according to a Mozilla bug report page, by disabling extensions by default and making users opt-in to activating their extensions.

Featured Resources

Managing security risk and compliance in a challenging landscape

How key technology partners grow with your organisation

Download now

Evaluate your order-to-cash process

15 recommended metrics to benchmark your O2C operations

Download now

AI 360: Hold, fold, or double down?

How AI can benefit your business

Download now

Getting started with Azure Red Hat OpenShift

A developer’s guide to improving application building and deployment capabilities

Download now

Recommended

How LogPoint uses MITRE ATT&CK
Whitepaper

How LogPoint uses MITRE ATT&CK

15 Jan 2021
Weekly threat roundup: Microsoft Defender, Adobe, Mimecast
vulnerability

Weekly threat roundup: Microsoft Defender, Adobe, Mimecast

14 Jan 2021
Mimecast admits hackers accessed users’ Microsoft accounts
Security

Mimecast admits hackers accessed users’ Microsoft accounts

13 Jan 2021
What is public key infrastructure (PKI)?
Security

What is public key infrastructure (PKI)?

12 Jan 2021

Most Popular

IT retailer faces €10.4m GDPR fine for employee surveillance
General Data Protection Regulation (GDPR)

IT retailer faces €10.4m GDPR fine for employee surveillance

18 Jan 2021
Citrix buys Slack competitor Wrike in record $2.25bn deal
collaboration

Citrix buys Slack competitor Wrike in record $2.25bn deal

19 Jan 2021
Should IT departments call time on WhatsApp?
communications

Should IT departments call time on WhatsApp?

15 Jan 2021