logo


Engadget


A flaw in Internet Explorer may let ad firms track your every move

Internet_explorer

Posted: 12/14/12 04:56 PM ET

Originally posted Dec 13, 2012 on Engadget by Jon Fingas, revised for AOL by Rob Zanicchi


It can feel a bit creepy when those pesky web ads try to lure you into buying that car you researched the day before -- kinda like you're being watched. Now, users of Microsoft's Internet Explorer may have good reason to be paranoid as ad analytics firm, Spider.io, claims security flaws in IE can lead to outlets tracking your mouse movements.

A hole in the JavaScript (a type of coding used to build websites), incorporated in versions 6 through 10 of the popular browser, reportedly allows intruders to follow along with the onscreen pointer, regardless of whether the app is active or running in the background. According to the data organization, an attacker can view your cursor gestures by simply buying ad space on any webpage you visit. Virtual keyboards, like those in many tablets, could be targeted since fingers or styluses mimic a mouse to input information. Microsoft has confirmed that it's investigating the glitch, but also takes issue with the source of the accusatory report.

The Redmond-based team argues that other web browsers have "similar capabilities" (which Spider debates) and Spider.io has ulterior motives -- being an ad analytics firm itself -- it allegedly wants to knock down two competitors that are supposedly utilizing the flaw for business purposes. We've asked Spider.io for comment, and we'll update this post if we're told more. Microsoft reinforces that they're "actively working to adjust this behavior" -- in the meantime, you may want to use another browser.

Via: The Verge
Source: Spider.io, IEBlog

 
  • Comments
  • 23
  • Pending Comments
  • 0
  • View FAQ
Post Comment Preview Comment
To reply to a Comment: Click "Reply" at the bottom of the comment; after being approved your comment will appear directly underneath the comment you replied to.
View All
Favorites
Recency  | 
Popularity
This user has chosen to opt out of the Badges program
photo
whitcombc
370 Fans
09:35 AM on 12/17/2012
Explorer is the best way to assure a lack of privacy. Firefox and Safari have good (not great) protections built in BUT you will need 3rd party adblockers and tracker killer add-ons. This page (for example) is showing 4 trackers - two from google - Google Analytics and Google +1, and Facebook Connect and Advertizing.com. Good luck trying to block everything. Half the "news" pages I go to are full of (as many as 25 track attempts) trackers. Flash alone is a major culprit and it is the bane of our existence since the ability to track is also an open door to allow sophisticated worms, bots and viruses to be placed on our computers disguised as advertising trackers. Every retail page from Sears to Verizon is packed with tracking so be aware and put the add-ons in.
Permalink  |
DJPETERCRISS
0 Fans
08:22 AM on 12/17/2012
PFFFT....It's no FLAW...it certainly is by design. Switching browsers are not gonna matter. Their all the same...it's ALL RECORDED. Don't let a company, or MEDIA.....tell you otherwise.
Permalink  |
photo
blackstang2011
blackstang2011
43 Fans
07:21 AM on 12/17/2012
Since AOL went free and has thousands of advertisesthis has occured more than on any other web browser. Plus AOL hooked up with Hupppost which really makes AOL suck even more if that is possible
Permalink  |
stcowgirl
1 Fans
08:17 AM on 12/17/2012
enlighten me. since when is aol free?
Permalink  |
dingbateye
46 Fans
09:28 AM on 12/17/2012
AOL is free when you subscribe to Time-Warner broadband services.
Permalink  |
photo
blackstang2011
blackstang2011
43 Fans
09:40 AM on 12/17/2012
AOL has been free for many years now. With the freebie you get zero tech support. For $4.99 you get minimal tech support and for $9.99 you get full tech support. How do I know this? Because I have been an AOL subscriber since the early 90's
Permalink  |
Claudesalon
0 Fans
11:03 AM on 12/17/2012
I agree and thnks for bringing this up
Permalink  |
This user has chosen to opt out of the Badges program
photo
Anona Mous
0 Fans
03:09 AM on 12/17/2012
They can see the mouse/cursor movements and mouse gestures.... that doesn't tell me much... does that mean they can read what I'm clicking? Or just that I moved the mouse x units to the left and y units up... or that I moved my mouse in a cicle then slashed through it, for a gesture.
Vague report. I suppose if they know the page you're on, they might figure out your clicks. How much programming must be invested to get what information? That I clicked 'Submit' or 'Next page'? But, of course, the sky is falling, so run to another browser quick. Maybe y'all need to try some privacy add-ons and stop clicking on every offer you see... or -any- offer.
Report how the 'exploit' can be used... to gain what information... give examples. Otherwise I don't care if they know I moved my mouse left, right, up, down... I don't enter passwords or usernames with a mouse.
Permalink  |
This user has chosen to opt out of the Badges program
photo
whitcombc
370 Fans
09:41 AM on 12/17/2012
Good luck. What are they tracking? Ip Addresses, how long you stayed on a site, which ads you hovered over, where you went after that site, what competing sites you went to, what you bought looked at or spent any time looking at, and this is all done with software loaded on your computer. If a page comes up with your name on it, your "login name" already typed out, the cookie that has been kept and the trackers are sending info about everything you do to the page owner AND they sell that info to whoever they want. Put adblock or some other add-on into the browser and you will see. I have 4 trrackers trying to watch THIS right now! Google Analytics, Google +1 Advertising.com and Facebook Connect.
Permalink  |
This user has chosen to opt out of the Badges program
photo
Anona Mous
0 Fans
02:41 PM on 12/17/2012
Yes, I suppose with other means of tracking, mouse movements may add into the general mix of tracking, but by itself, it's not that much... which was my point. The article only really mentioned virtual keyboards, and on tablets... neither of which I'm using. I have ad-blocking and other privacy add-ons. Yes we already have an assault going on... but mouse gestures? We should switch browsers because they can tell mouse gestures? As you/others mention... all the browsers have track info to be gathered... but yes, run away from that foul, evil IE, because someone may learn I clicked five times in 'a spot', moved mouse x,y units to the upper left, then moved mouse in a circle gesture. Mouse movements, not -what- was clicked... the article is vague, except for virtual keyboards.
Permalink  |
HUFFPOST SUPER USER
wesdfs
a guy with different point of veiw
185 Fans
02:04 AM on 12/17/2012
I think im getting rid of ie and switching to fire fox----I think these flaws are by design and not mistakes--so I always lie when it comes to my personal info
Permalink  |
photo
Kimberle-Anne Young
0 Fans
12:54 AM on 12/17/2012
I'm sick and tired of it, yes AOL to because it just so happened that this is happening to me and now I can't use me tablet on social networking sites, my Facebook page has been hacked several times, and right now when I go on there there is a bug the doesn't allow me to comment or see anything, I tried contacting help, no reply, so I get a 1800 number from Google and the man says he charges 150 dollars for secure social networking, right now if you use your phone or tablet you might as well be posting all your in the paper. Facebook is guilty the most. I am a victim of this and it's well documented.
Permalink  |
photo
Kimberle-Anne Young
0 Fans
12:43 AM on 12/17/2012
This has happened to me, I now have a virus in my tablet the spider ignored, now I an unable to use my tablet on Facebook, and other networking site's. Because it seems as though they are controlling what I can do or see, my friends all thought I was going crazy and it just about drove me crazy I've almost deleted my change page because there is no privacy my accounts have been hacked repeatedly, the only way I know all of this is because of my AOL account keeps track. I'm ready to Sue someone this caused and still is causing unbelievable stress, and to get this bug in my tablet removed I have to purchase real wifi support for tablets "that really work ." The one's now just seem like a front for a look into your information I'm tired of this it can and will drive you mad if you let it, I'm real close.
Permalink  |
HUFFPOST SUPER USER
searcherkind
38 Fans
12:19 AM on 12/17/2012
not to worry , im watching them watching you : )
Permalink  |
photo
HUFFPOST SUPER USER
alanramsey
The Founders were Social Progressives, too.
283 Fans
09:08 PM on 12/16/2012
So, it stands to reason that while these ad companies are planting seeds on our computers to follow our every move, it also stands to reason that they could be planting files on our computers that we don't want to be there and that could compromise our systems and possibly even be illegal if in our possession?

My wife has a computer that only she and her daughter have access to and files keep showing up that they insist they have nothing to do with...

...I'm guessing there's all kinds of folks out there going around hacking into computers and sticking files into web users.
Permalink  |
HUFFPOST SUPER USER
redconvoy
22 Fans
10:40 PM on 12/16/2012
Do you have a virus scan and a spy program to keep them out?
Permalink  |
photo
hotstorminights89
2 Fans
07:28 PM on 12/16/2012
ADs are invading our lives! If they would put the money they use in ADs in their products MAYBE they won't have to hound us and track us to try to get us to buy their nothing but JUNK products! The more I see of their ADs the less I want to buy.
Permalink  |
photo
wbillmor
12 Fans
06:18 PM on 12/16/2012
AOLIS THE BIGGEST OFFENDER!
Permalink  |
HUFFPOST SUPER USER
propackage
338 Fans
05:10 PM on 12/16/2012
It isnt a mistake, its by design.
Permalink  |
photo
Sandshark2
25 Fans
04:40 PM on 12/16/2012
I am guessing but we are being spied on constantly on line, off line and at this point.. their is no turning back. Privacy is a thing of the past. I think that the on line world knows more about me then I know of myself.
Permalink  |
photo
jijjhnsn
Retired Vet
135 Fans
05:41 PM on 12/16/2012
You are very correct. I make simple inqury about a business and the next I see their ads not just on my browsing but my local tv. Well they can do what they want I won't buy.
Permalink  |
 


Follow AOL




Featured AOL Brands View All Brands

 

| Help | Get Free Email | AOL Downloads
AOL Inc. | Updated Privacy Policy | Updated Terms of Service | About Our Ads
Site Map | Make AOL.com My Homepage | Upgrade Browser
Follow AOL On: Facebook | Twitter | RSS | Mobile
© 2013   AOL Inc. All Rights Reserved | My Account