Connect with us

Business

DuckDuckGo now blocks Google sign-in pop-ups on all sites

Published

on

DuckDuckGo apps and extensions are now blocking Google Sign-in pop-ups on all its apps and browser extensions, removing what it perceives as an annoyance and a privacy risk for its users.

DuckDuckGo offers a privacy-focused search engine, an email servicemobile apps, and data-protecting browser extensions. A standalone web browser is also in the works, currently in beta and only available for macOS.

The company announced today that all its Chrome, Firefox, Brave, and Microsoft Edge apps and browser extensions will now actively block Google sign-in prompts displayed on sites.

Google offers this single sign-on option on websites to enable users to quickly sign in to new platforms using their Google account for convenience and unified control.

Simply put, instead of having to create new accounts and manage multiple passwords on various sites, users can just sign in with Google when the option is available and skip the hassle.

The downside of this practice for users is that the websites and apps users sign into can be tracked by Google.

While Google states explicitly, “Data from Sign In With Google is not used for ads or other non-security purposes,” DuckDuckGo says their tests show that Google still collects data.

“See our testing in the attached image which shows Google is collecting data on sites when signed in with Google. For example, on investing.com, many requests are made to https://securepubads.g.doubleclick.net/gampad/ads?.,” DuckDuckGo told BleepingComputer.

“This includes the full page url in the request parameters. In testing, if we’re not signed into the website with Google, the DSID cookie sent with these requests has a value of NO_DATA. If we are signed into the website with Google, the DSID cookie sent with these requests has a long hexadecimal value.”

“You can see this in the attached image – on the left we’re signed in with Google, on the right we’re not signed in with Google.”

Cookie siphoning user data (left) and blocked (right)
Cookie siphoning user data (left) and blocked (right) (DuckDuckGo)

As DuckDuckGo believes these are privacy risks, it has resorted to taking the rather aggressive approach of blocking Google sign-in prompts, never giving users the option to take up the tech giant’s offer.

BleepingComputer has found that the option is baked into the general protection feature of the browser extension, so when the extension is active, all Google prompts are blocked automatically.

The same applies to the DuckDuckGo browser for macOS, where the Google blocking feature is built into “Protection,” and there’s no option to disable it unless you disable all privacy protections.

DuckDuckGo browser on macOS, protection set to on (left) and off (right)
DuckDuckGo browser on macOS, protection set to on (left) and off (right) (BleepingComputer)

DuckDuckGo’s new feature will not cause any issues to those who use Google to sign-in on websites as that method is still available on the affiliated platforms’ login pages. However, the annoying pop-up window will not show up.

Source: https://www.bleepingcomputer.com/news/security/duckduckgo-now-blocks-google-sign-in-pop-ups-on-all-sites/

Advertisement
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Copyright © 2023 Cyber Reports Cyber Security News All Rights Reserved Website by Top Search SEO