Blocking Add This



Plenty of stories about the new so-called ‘unblockable’ web-tracking that we won’t repeat them here. Suffice to say, the skankworks.net has blocked them already.

For some time users at the skankworks.net have benefited from robust blocking technologies, so as soon as we learned about the addthis.com “Canvas API Fingerprinting” exploit we went and checked our logs.

Here’s the kind of information they are collecting when you visit a site that is using the tracking exploit:

m.addthis.com/live/red_lojson/300lo.json?fkvhsl&colc=1406056806089&si=53ceb9645c0db729&
uid=52b7146205b1164b&pub=ra-4db9600b79fab77b&rev=1405430506&jsl=8321&ln=en&pc=men&
vpc=&dp=threatpost.com&dr=t.co&fp=thousands-of-sites-found-tracking-users-through-
practically-unblockable-fingerprint-mechanism%2F107356&aa=0&fcu1=b18284b9&&
fcu9s=1064089380&fcu9l=108479542187835764&
fcun=k0%3D3638321399%26k1%3Den-GB%26k2%3D24%26k3%3D1024x
3840%26k4%3D20941781%26k5%3D-
120%26k6%3D1%26k7%3D1%26k8%3D0%26k9%3D1%26k10%3Dn0%26k11%3D
undefined%26k12%3Dundefined%26k13%3D0%26k14%3D
Win32%26k15%3D2378668053%26k16%3D3625942313%26
2Ci%3D1349%2Cxm%3D1489%2Cxp%3D1586&pi=1
3D1%26k18%3D1101%26k19%3D1%26k20%3D0%26k21%3D0%26k22%3D1&
k17%3D1%26k18%3D1101%26k19%3D1of=0&uf=0&nt=cs
;0,ce;0,dc;125,dclee;123,dcles;123,di;82,dl;57,
dle;0,dls;0,fs;0,lee;u,les;125,ns;
0,rs;0,rspe;72,rsps;46,scs;u&pd=0&irt=0&a
mp;md=0&ct=1&tct=0&abt=0&lt=240&cdn=0&
amp;lnlc=GB&whcs=0&tl=c%3D73%2Cm%3D1339%
&fr=aAcs8795YB&&rb=4&gen=100&callback=_ate.track.hsr&
amp;mk=online%20tracking%2Ccanvas%20fingerprinting%2Cprinceton%20university%2Ceff%2C
tracking%2Ccanvas%20fingerprinting%2Ceff%2Cprinceton%20university%2Ctracking

Ironically, “dp=threatpost.com”, indicates that the website hosting an article warning users about this terribly invasive new form of tracking, was also using it themselves. Shock. Horror.

Here’s the antidote, with a new entry at number one in the skankworks.net blocking charts:

Up yours, addthis.

This entry was posted in General IT and tagged , , , . Bookmark the permalink.