• Piece_Maker@feddit.uk
      link
      fedilink
      English
      arrow-up
      19
      ·
      5 months ago

      Yeah pretty much. The privacy invasion of ad companies is terrible for sure, but the whole seeing ads all over the damn place in the first place is also annoying enough that even if they were somehow completely tracker-free I would still block them.

      • Mango@lemmy.world
        link
        fedilink
        arrow-up
        3
        ·
        5 months ago

        Not only do I not want them looking at me, but I do not want to be made to look at them! Since when does someone else’s money mean I have to have them in my life?

  • jet@hackertalks.com
    link
    fedilink
    English
    arrow-up
    60
    arrow-down
    1
    ·
    5 months ago

    I said this in the other thread but it bears repeating.

    Data-driven marketing and privacy are diametrically opposed.

    If I want to advertise to pregnant teenagers looking at bus tickets, even if I have something helpful to say, that is a huge privacy violation to those people. And even if you say, I can’t see who’s being advertised to, I can see who clicks on the ads, even accidentally. Now I know a whole lot about them

    • sugar_in_your_tea@sh.itjust.works
      link
      fedilink
      arrow-up
      7
      ·
      5 months ago

      I can see who clicks on the ads

      Any privacy-focused advertisement program needs to prevent this. Clicking on privacy-oriented ads should be handled locally and anonymous statistics sent to Mozilla for revenue collection. There should be zero way to connect my identity with any interaction with ads.

      If they can manage that, I’ll disable my ad-blocking on those sites that opt-in. But I’m not giving up any of my metadata. My metadata stays on my machine, so if they want to advertise to me, they need to abide by that.

        • sugar_in_your_tea@sh.itjust.works
          link
          fedilink
          arrow-up
          6
          ·
          5 months ago

          It’s how they should work.

          When I get an ad in the mail, the advertiser doesn’t know that I actually looked at it. When I grab a newspaper ad at the store, the advertiser doesn’t know that I did that unless I use a coupon or something.

          That’s how I’d like online ads to work, but with a bit of targeting based on local-only data.

          If they want me to look at ads, they’re going to need to respect my privacy. If not, I’m content leaving my ad-blocker enabled.

          • Possibly linux@lemmy.zip
            link
            fedilink
            English
            arrow-up
            4
            arrow-down
            1
            ·
            5 months ago

            The whole point of targeted advertising is that you get to bid on people you want. You want a old fat guy in Oklahoma? Done You want to advertise gambling apps to people who have a history of gambling? Done.

            • sugar_in_your_tea@sh.itjust.works
              link
              fedilink
              arrow-up
              4
              ·
              5 months ago

              That’s certainly true from Google’s or Meta’s perspective, but it wasn’t always that way.

              I get ads in my mailbox that are completely irrelevant to me, like Medicare ads (probably for the previous owner). As a kid, I watched lots of ads on TV that definitely weren’t applicable to me (e.g. cutco knives, when I wasn’t old enough to use a knife). I see billboards on my way to work for debt relief (not in any debt, aside from mortgage) and addiction recovery (no addictions here). Companies pay quite a bit for those ads even if they won’t be relevant for most people because of the sheer reach of those ads.

              I’m proposing a middleground. Ad companies don’t get as accurate of targeting for ads, but in exchange they get seen by people who would otherwise block them.

      • jet@hackertalks.com
        link
        fedilink
        English
        arrow-up
        1
        ·
        5 months ago

        I’m not sure how that’s physically possible. Any data-driven marketing strategy that results in clicks, somebody just makes a very narrow campaign and then measures the clicks. Anybody who clicks matches the data targeting.

        If the goal is to drive clicks, and not just like expose you to a logo passively, I don’t see how it’s physically possible to do anything else

        • sugar_in_your_tea@sh.itjust.works
          link
          fedilink
          arrow-up
          3
          ·
          edit-2
          5 months ago

          Like this:

          1. Mozilla runs some algorithm to categorize browsing history
          2. Advertisers send an ad compaign to Mozilla targeting certain categories
          3. Firefox downloads those campaigns regularly and notifies websites that the client has opted-in to local ads
          4. Website doesn’t display ads, and Firefox replaces ad areas with locally-driven ads
          5. Any clicks/views are recorded locally and reported periodically to Mozilla in an anonymized fashion (e.g. distribution of categories among views and clicks, distribution across domains, etc); clicks open in a new tab with no tracking other than the ad image that was clicked (e.g. if it was a product, the server can redirect to that product page)
          6. Mozilla bills advertisers using click and view stats; advertisers only get summarized, aggregated data

          That’s what I thought Brave was promising, and that’s what I hope Mozilla is planning. I doubt Mozilla will deliver, but hope springs eternal. If anyone can do it, it’s Mozilla, I just doubt they will.

          • jet@hackertalks.com
            link
            fedilink
            English
            arrow-up
            2
            ·
            5 months ago

            5 is the problem. If you click through to anything, the person who gets the clicks knows what campaign you came from.

            • sugar_in_your_tea@sh.itjust.works
              link
              fedilink
              arrow-up
              3
              ·
              5 months ago

              Sure, but that wouldn’t identify you, and that’s the important part. And they’d only know that if you actually click. I guess they could try the fingerprinting route, but Mozilla could also make strict policies that any company caught doing that would have their ad agreement rescinded.

              I doubt ad companies would get on board with that, but those are my requirements. I’m happy to look at ads, provided my privacy is maintained.

              • jet@hackertalks.com
                link
                fedilink
                English
                arrow-up
                2
                ·
                edit-2
                5 months ago

                I’m not sure that’s true.

                Advertisement campaign a, takes people to landing site b.

                Anybody who shows up at site b, you know was targeted and campaign a.

                And if you’re saying b is some generalized large domain, I promise you no advertiser would ever do that. They would set up subdomains, or campaign specific domains, any landing page where they know where you’re coming from. And there’s no way to stop them from doing that

                At its core, most online advertising is just about a campaign to send people to a location. And if you can specify the campaign, and you can specify the location, you know which people came from that campaign and what they’re advertisement factors are

                • sugar_in_your_tea@sh.itjust.works
                  link
                  fedilink
                  arrow-up
                  2
                  arrow-down
                  1
                  ·
                  5 months ago

                  Advertisement campaign a, takes people to landing site b.

                  Mozilla would be in charge of how long campaigns run, and what types of URLs would be allowed. The alternative is those ads get blocked and the advertiser gets nothing.

                  So yeah, the advertiser could tell that a Firefox user visited a given link, but they couldn’t identify anything in particular about that user, other than their search history matched one of the criteria for the campaign.

                  That’s honestly pretty acceptable. Other advertisers know the site the ad was served on, cookies from that site, potentially a nonce per user, etc. This method strips most of that, and only lets them know that it was a Firefox user during a given campaign. Mozilla could do audits to check if they’re doing anything more to fingerprint users, and if so, drop the advertiser.

                  If those users would otherwise block ads, theoretically those advertisements are more valuable because those users are much harder to target. So advertisers may be willing to compromise here, since the alternative is no revenue. Mozilla would share revenue with sites, so there’s an incentive for websites to opt-in as well.

  • LWD@lemm.ee
    link
    fedilink
    arrow-up
    53
    arrow-down
    1
    ·
    edit-2
    5 months ago

    This sounds a whole lot like privacy sandbox.
    You know, Google Topics.
    The thing nobody wanted.

    And honestly, reading through the article here, I don’t see many ways that it’ll be much better. If advertisements are matched on your local machine, then data is still being amalgamated somewhere. This is similar to Google Topics and Microsoft Recall, two things people complain about. For good reason.

    The online advertising industry is undergoing a significant transformation. With growing consumer concerns and increasing scrutiny from regulators, it’s evident that current data practices are excessive and unsustainable.

    It’s strange that Mozilla, a company that constantly positions itself as the ethical alternative to big tech, is saying “companies are being mandated out of unethical advertising.”

    Secure Environment: Data sets are matched in a highly secure environment

    Without any further information, this means so very little. Is it done locally? On their servers? Who knows.

    By combining Mozilla’s scale and trusted reputation with Anonym’s cutting-edge technology, we can enhance user privacy and advertising effectiveness, leveling the playing field for all stakeholders.

    When advertising is the business, your attention is the product. Maybe I’m being too unkind to Mozilla here, but it’s their press release and they can be as specific as they choose.

    Anonym was founded with two core beliefs: First, that people have a fundamental right to privacy in online interactions…

    This is the sort of meaningless fluff that you see at the front of every privacy policy, including that of the most invasive companies.

    … and second, that digital advertising is critical for the sustainability of free content, services and experiences.

    That’s the only way to offer free services?! What about donation-based models? Maybe Mozilla could have set up something like what Brave has, except not based around a sketchy cryptocurrency.

    In fact, GNU Taler exists for this very purpose.

    Anonym was founded in 2022 by former Meta executives

    Meta. The company known for loving user privacy.

    I was hoping Mozilla would finally shut up about putting AI into everything, but in retrospect, maybe they should go back to that.


    I’m reading through the Anonymco privacy policy. Some standouts:

    We collect… IP address, social media user names, passwords and other security information,

    Passwords?!

    …your browsing and click history, including information about how you navigate within our Site and Services…

    …We collect and verify resumes, employment eligibility, education, and employment history from job applicants. This includes information about your skills and qualifications for the position…

    Okay, great, they know how employable you are

    We may disclose Personal Information and any other information about you to government or law enforcement officials or private parties… to prevent or stop any illegal, unethical, or legally actionable activity…

    They are leaving the door open to disclose your data to private mercenaries to prevent… Pre-crime, I think.

    We use Google Analytics on the Site and Services to analyze how users use the Site and Services, and to provide advertisements to you on other websites.

    THEY USE GOOGLE ON YOUR DATA.

    This really sounds like Mozilla snapped up the first company with the right buzzwords that they could find, rather than looking for the best one. It sounds like a repeat of the OneRep privacy disaster, when they partnered with a corporation that sold people’s data and used their ownership of it to basically demand ransom payments for its removal.

    • sugar_in_your_tea@sh.itjust.works
      link
      fedilink
      arrow-up
      15
      ·
      5 months ago

      Passwords?!

      Yeah, that and usernames are a big nope from me.

      I’m not opposed to the idea of privacy-oriented advertising, but it needs to be:

      • local only - no service, including Mozilla, can correlate me to ads being shown; advertisers and Mozilla can only know broad stats
      • opt-in - ideally it would replace ads on websites, not add ads, and ad-block should continue to be effective; I’m willing to disable ad-block if a site opts-in to privacy-friendly ads (my concern is tracking, I don’t mind them getting paid)
      • auditable - I should be able to see why certain ads are being shown, and verify that none of that metadata leaves my computer

      THEY USE GOOGLE ON YOUR DATA.

      Again, big nope from me. I hope Mozilla significantly changes how they operate and only uses their talent to build something actually privacy-focused. That’s a pretty big ask, so I’m not optimistic.

      • LWD@lemm.ee
        link
        fedilink
        arrow-up
        12
        ·
        5 months ago

        My hopes are not high. Right before FakeSpot got bought out by Mozilla, they changed their privacy policy to add a “we will sell your data if we get bought out” clause.

        (As a Mozilla product now, FakeSpot still retains private data and the right to sell it to advertising companies. So, at least to me, Mozilla has been an adtech company since 2023.)

        • sugar_in_your_tea@sh.itjust.works
          link
          fedilink
          arrow-up
          5
          ·
          5 months ago

          They at least have good ad-block support, so I’ll continue using them as long as there’s nothing better. I’ve switched my mobile browser to Mull, and I’ll switch my desktop browser to Mullvad Browser if I need to (it’s not in my Linux distro’s repos, and I’m lazy).

          • LWD@lemm.ee
            link
            fedilink
            arrow-up
            4
            ·
            5 months ago

            LibreWolf is pretty good too. It’s less like Tor than Mullvad Browser is, at least out of the box.

    • RvTV95XBeo@sh.itjust.works
      link
      fedilink
      arrow-up
      10
      ·
      5 months ago

      For a company who has a whole schtick going where they read and critique other companies’ privacy policies, this is pretty ludicrous.

      • LWD@lemm.ee
        link
        fedilink
        arrow-up
        3
        ·
        edit-2
        5 months ago

        All I can do is tap on the little graphic I made from their last buyout (that literally made Mozilla into an data broker):

        FakeSpot privacy lowlights (I can’t tell if the image is linking correctly)

        The wing of Mozilla that puts out press releases about invasive car companies seems to have no influence on the wing of Mozilla acquiring and injecting random crap into Firefox.

    • lemmyvore@feddit.nl
      link
      fedilink
      English
      arrow-up
      5
      ·
      5 months ago

      Is it done locally? On their servers? Who knows.

      You know it’s on their servers. 🙂 Otherwise they would be beating so much around the bush.

    • Thevenin@beehaw.org
      link
      fedilink
      arrow-up
      3
      ·
      5 months ago

      That’s the only way to offer free services?! What about donation-based models? Maybe Mozilla could have set up something like what Brave has, except not based around a sketchy cryptocurrency.

      Please correct me if I’m mistaken, but I thought Brave only gave donatable tokens to users as a reward for watching ads… ads which Brave curated for the user based on their activity. It’s just targeted ad revenue with extra steps.

      At first blush, it seems to me that both Brave and Anonym want to be the middleman for targeted advertising. What am I missing?

      • LWD@lemm.ee
        link
        fedilink
        arrow-up
        1
        ·
        5 months ago

        I think you can add your own money into Brave to tip people extra.

        And the biggest difference is…

        • Brave sold itself on this as a feature since day one
        • Brave had the audience who wanted this
        • The Brave software is a known factor; what’s going to happen to Firefox is unknown.
  • TAG@lemmy.world
    link
    fedilink
    arrow-up
    37
    arrow-down
    3
    ·
    5 months ago

    I am a little disgusted by this because now both major browser engines are being developed by an advertising company, creating more incentives for future web technologies that strengthen tracking and undermine ad blocking.

    From what I understand, this is an anonymized targeted ad company. In other words, ads are still targeted to the individual user, it is just harder for the advertiser to track (or profile) an individual user. Are there any companies still doing untargeted ads, ads where the advertiser might pick what site their ad goes on but cannot target a specific user demographic?

    • jet@hackertalks.com
      link
      fedilink
      English
      arrow-up
      15
      ·
      5 months ago

      That’s a really good point. I hadn’t put it together that all browsers are now advertising companies

      I think the closest we currently see, are video sponsorships on platforms like YouTube, where the creator just reads an advertisement for their audience. If you see the video you see the ad read it’s not tailored at all. That is not individually targeted, but they’re definitely choosing the show based on the demographics the show has.

  • ssm@lemmy.sdf.org
    link
    fedilink
    arrow-up
    28
    ·
    edit-2
    5 months ago

    Stolen from r*ddit, this is what the option looks like in the config (already in beta/dev channel)

    also stolen from r*ddit: “Anonym was founded in 2022 by former Meta executives Brad Smallwood and Graham Mudd.”

      • HouseWolf@lemm.ee
        link
        fedilink
        English
        arrow-up
        3
        ·
        5 months ago

        I switched a few months back after using Firefox /w ArkenWolf for years.

        It’s great having an out the box product I don’t have to immediately tweak settings or install 3rd party tweaks & plugins to have a decent experience with.

  • observantTrapezium@lemmy.ca
    link
    fedilink
    arrow-up
    24
    ·
    5 months ago

    I wonder if the process is open source or we just take their word that it’s privacy preserving. Anyway, privacy is not the only problem with online advertising, so I’m not going to give up adblocking any time soon.

  • 𝘋𝘪𝘳𝘬@lemmy.ml
    link
    fedilink
    arrow-up
    24
    ·
    edit-2
    5 months ago

    Anonym was founded in 2022 by former Meta executives […]. The company was backed by [various venture capital corporations and multiple] strategic individual investors.

  • Possibly linux@lemmy.zip
    link
    fedilink
    English
    arrow-up
    21
    ·
    edit-2
    5 months ago

    Great

    I love how Mozilla seems to be trying so hard to kill itself. You don’t see Google marketing Chrome as the browser that serves you ads and sends back telemetry.

  • istanbullu@lemmy.ml
    link
    fedilink
    arrow-up
    25
    arrow-down
    6
    ·
    5 months ago

    Advertising can’t be privacy preserving. What gives advertisement value is the fact that it’s targeted.

    • Akasazh@feddit.nl
      link
      fedilink
      arrow-up
      26
      arrow-down
      1
      ·
      5 months ago

      Advertising signs next to a road are both targeted and privacy respecting, just like radio/tv.

      • jet@hackertalks.com
        link
        fedilink
        English
        arrow-up
        5
        ·
        edit-2
        5 months ago

        That’s a really good point.

        However the company that Mozilla just purchased was about targeted advertisement campaigns… “data-driven advertisements”

        • Akasazh@feddit.nl
          link
          fedilink
          arrow-up
          8
          ·
          5 months ago

          Yeah I’m aware, I just reacted to the general statement about advertising that was untrue imho.

    • Cochise@lemmy.eco.br
      link
      fedilink
      arrow-up
      8
      ·
      5 months ago

      Contextual ads can be privacy preserving. As in Netflix ads in a entertainment page. The problem is targeting the ad on people, and not on content.

    • WagnasT@lemmy.world
      link
      fedilink
      arrow-up
      10
      arrow-down
      1
      ·
      5 months ago

      i really wish i could donate to just firefox and not mozilla, I just want firefox to be better and not to spend money on all these weird things.

        • LWD@lemm.ee
          link
          fedilink
          arrow-up
          6
          ·
          5 months ago

          All that being said, if you don’t want to tweak Firefox with Arkenfox user.js (or tweak it yourself), and you can live with the fact that Librewolf makes these outgoing connections [to update uBlock Origin and its lists], Librewolf is currently one of the most privacy respecting browsers out there.

          It’s in my “good enough for me” list because the alternative is dealing with Firefox myself

        • Possibly linux@lemmy.zip
          link
          fedilink
          English
          arrow-up
          4
          arrow-down
          2
          ·
          5 months ago

          Yeah, no some guys blog stating his personal opinion is not evidence. We are just talking about things that are better than Firefox anyhow

          • ssm@lemmy.sdf.org
            link
            fedilink
            arrow-up
            3
            arrow-down
            1
            ·
            5 months ago

            It would be more useful if you had something more substantiative than “it’s a blog so it’s wrong”. Is there actually something in the article you take issue with?

            • Possibly linux@lemmy.zip
              link
              fedilink
              English
              arrow-up
              3
              ·
              5 months ago

              They blog doesn’t give much of a reason of why it isn’t private. It feels more like “I don’t use this so you shouldn’t” mentality

              • ssm@lemmy.sdf.org
                link
                fedilink
                arrow-up
                2
                ·
                edit-2
                5 months ago

                How is Librewolf and Waterfox connecting to Amazon Cloudfront and a bunch of other domains on first boot and Waterfox having a sketchy privacy policy (article’s is out of date but the new one isn’t much better) a subjective opinion?

                • Possibly linux@lemmy.zip
                  link
                  fedilink
                  English
                  arrow-up
                  6
                  ·
                  5 months ago

                  For one, Librewolf clearly states what it does on startup. It has to update ublock origin and other threat lists. That is better than having out of date protections is it not? Just because it connects doesn’t mean it sends much data. Things need to be hosted somewhere.

                  For Waterfox the argument is less bad but Waterfox is about on par with a lot of other stuff. It isn’t going to be crazy good and it is no where near as good as Librewolf but it is better than Firefox and many others. I would rate it as half bad.

                  Librewolf is the arguably best privacy browser. You haven’t named anything better. It breaks sites occasionally but it does protect privacy and security and scores well on fingerprinting resistance.

            • LWD@lemm.ee
              link
              fedilink
              arrow-up
              3
              ·
              5 months ago

              Personally I disagree with the conclusions stated by the blog post, but I can respect the reasoning for getting there, and I can draw my own conclusions from it myself.

    • thingsiplay@beehaw.org
      link
      fedilink
      arrow-up
      2
      ·
      5 months ago

      The biggest problem with the alternative browsers I wanted to use is, that they are not managed by my distribution (repository).

      • ssm@lemmy.sdf.org
        link
        fedilink
        arrow-up
        2
        ·
        5 months ago

        What distribution are you using? Every distro I’ve tried, even the more obscure ones (alpine, void, openbsd), package most of the webkit/webengine browsers.

        • thingsiplay@beehaw.org
          link
          fedilink
          arrow-up
          3
          ·
          5 months ago

          EndevourOS, based on Archlinux. I was looking into forks of Firefox. For a webbrowser, it should be in the repository (not AUR) and it should be as quickly updated as Firefox itself. None of the forks I looked into match this criteria.

          • ssm@lemmy.sdf.org
            link
            fedilink
            arrow-up
            2
            ·
            5 months ago

            Why use Arch (or something Arch based) then? I don’t like the AUR either (or systemd, or the bleeding edge (buggy) packages), which is why I like Void Linux.

            • thingsiplay@beehaw.org
              link
              fedilink
              arrow-up
              2
              ·
              edit-2
              5 months ago

              I wouldn’t call Arch bleeding edge. There are 2 stages before packages get updated in the repository for everyone (maybe besides trusted projects? which get immadiate update). I wait since almost 3 weeks until they update RetroArch. :D But that’s just terminology and not really important.

              I personally want the newest stuff and being updated all the time. Systemd isn’t a problem for me, it’s fine to me. The packages from Arch repository aren’t buggy for me, so no complains there. You can always find reasons why to switch to another distribution, but that often is not the entire truth. There is often so much more to consider. My previous point is about the software I was looking into not packaged by the distribution of my choice. So many people say packages should come upstream, like in Flatpak and distributions should not package anymore. I hardly disagree here. But I digress… again…

              I’m not here to switch my distribution, but think about switching to another Firefox base. I think Firefox is a great browser and want to keep using it, but have a few disagreements with Mozilla lately. That’s why I was looking into an alternative fork. I will stay on EndeavourOS slash Archlinux… at the moment at least.

              Edit: Dang it, I did it again. Why do I need to write entire blog posts as a forum reply?