securitybreach Posted October 29, 2014 Share Posted October 29, 2014 Concern Arises Over Verizon's New Sneaky 'Stealth Cookie': Verizon Wireless has started taking heat from privacy advocates for altering their customers' traffic and inserting unique identifiers that users have no control over Verizon Wireless has started taking heat from privacy advocates for altering their customers' traffic and inserting unique identifiers that users have no control over. We've already explored how over the last two years Verizon has been ramping up data collection on its wireless customers via programs like Verizon Selects and their Relevant Mobile Ad department, which track your personal information and web habits for more tailored advertisements (that data's also sold to third parties). Curiously, while Verizon has been tracking users' online activity for two years, it was only last week that people started noticing that Verizon was using a controversial sort of "super cookie" that modifies user traffic to uniquely identify users. This Unique Identifier Header, or UIDH, broadcasts your identity across the web -- and remains -- and can be abused -- even if you opt-out of Verizon's programs. That's a huge problem, notes Stanford lawyer and computer scientist Jonathan Mayer, who writes that broadcasting that unique identifier is rather ham fisted http://www.dslreport...h-Cookie-131034 Source: https://www.reddit.c...stealth/clm7ret Verizon isn't the only carrier doing it. @kennwhite noted on his sniff page the following carriers his tool will identify: AT&T, Verizon, Sprint, Bell Canada, & Vodacom. You can check to confirm if your device's requests are being injected at http://lessonslearned.org/sniff **Edit: It has been confirmed that T-Mobile doesn't inject UID into http traffic. Note that these carriers can only inject into HTTP traffic, so any site that uses HTTPS will be protected from this. Larger sites like Amazon, Facebook, Yahoo all use HTTPS, effectively protecting you from this nonsense. So glad I moved to T-Mobile two years ago. 2 Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.