Bitcoin Forum
September 22, 2021, 08:08:17 AM *
News: Latest Bitcoin Core release: 22.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: Ledger vs Trezor Tracking & Cookie privacy competition  (Read 147 times)
dkbit98
Legendary
*
Offline Offline

Activity: 1260
Merit: 2380


Powerful promotion strategy https://bit.ly/3cRVjFi


View Profile WWW
October 25, 2020, 01:56:22 PM
Last edit: October 25, 2020, 09:40:32 PM by dkbit98
Merited by mprep (3), The Pharmacist (3), bitmover (3), malevolent (2), o_e_l_e_o (2), Coin-Keeper (2), Pmalek (1), Rikafip (1)
 #1

We all see that hardware wallet manufacturers are constantly competing for customers, but let's see how much they value our privacy and what are they thinking about tracking.

For this purpose I used Blacklight, A Real-Time Website Privacy Inspector from The Markup website.

Test Subject number 1 - Ledger wallet website      ll     Test Subject number 2 - Trezor wallet website


https://themarkup.org/blacklight?url=www.ledger.com
https://themarkup.org/blacklight?url=www.trezor.io

As we can see Ledger wallet website has 13 Ad trackers, 17 third-party cookies, they are monitoring keystrokes and mouse clicks, they inform Facebook when you visit their website, and they allow google analytics to follow us across the internet.

Trezor wallet website has 7 Ad trackers, 1 third-party cookie, they are monitoring keystrokes and mouse clicks, they inform Facebook when you visit their website, and they allow google analytics to follow us across the internet.

Nothing to be proud here, but Trezor is winner in this competition and has less trackers and cookies but I think there should be no trackers for something like hardware wallets.
Great example is Bitcointalk forum website with ZERO tracking: https://themarkup.org/blacklight?url=bitcointalk.org





Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1632298097
Hero Member
*
Offline Offline

Posts: 1632298097

View Profile Personal Message (Offline)

Ignore
1632298097
Reply with quote  #2

1632298097
Report to moderator
The Pharmacist
Legendary
*
Offline Offline

Activity: 2366
Merit: 4523


>>Proudly cycling merits for Team Foxpup<<


View Profile
October 25, 2020, 08:41:19 PM
Merited by Coin-Keeper (2)
 #2

Nice research, OP.  I find this info to be....depressing, for lack of a better word.  What I really don't like is that apparently if you visit Ledger's website, they give data (I'm not sure what, exactly) to Facebook, a corporation I detest with every neuron in my CNS.

Shame on both of these companies for this.  I'm pretty sure they know how important privacy is to people who are interested in their products.  I'm sure there's a way to know beforehand about these cookies, but in practice that's something the vast majority of people don't bother to look at, lest they waste multiple hours per day simply figuring out what data each website is sharing with what companies.  Jesus.

Coin-Keeper
Hero Member
*****
Offline Offline

Activity: 740
Merit: 580



View Profile
October 25, 2020, 09:30:00 PM
 #3

Great find!  I try to mitigate further on my own, but I shouldn't have to!


"Pharmacist", I sent 2 merits to you instead of OP.  Enjoy, LOL!   Smiley

BTC: 1PYSBbuKM3kW19xe9TXJQfq64rPhd8XorF
Staked and Verified: https://bitcointalk.org/index.php?topic=996318.msg17102755#msg17102755
bitmover
Legendary
*
Offline Offline

Activity: 1330
Merit: 2745



View Profile WWW
October 26, 2020, 01:17:52 AM
Merited by mprep (3)
 #4

Very sad to see good products that are ignoring the best private practices.

I suggest that everyone who cares about privacy just use Firefox + uBlock + Privacy Badger to have a better internet experience.
You can see many good privacy recommendations here:

https://www.privacytools.io/browsers/#browser
Quote
Firefox is fast, reliable, open-source, and respects your privacy. Don't forget to adjust the settings according to our recommendations:  Privacy Add-ons  WebRTC  about:config tweaks.

o_e_l_e_o
Legendary
*
Offline Offline

Activity: 1414
Merit: 7187


Wear a mask, slow the spread


View Profile
October 26, 2020, 01:57:42 AM
 #5

It is grim, but it is not really surprising. Pretty much every website you frequent is filled with ads, trackers, and third party cookies. Google and Facebook follow you across the internet, even if the individual site doesn't include their trackers or services. You should never rely on websites, even ones like this which should know better, to take your privacy seriously. Your privacy is your responsibility.

Stop using Google and Facebook products. Install uBlock Origin to block ads and trackers. Disable all third party cookies. Use at least Firefox, but preferably Tor. Use Linux. Use disposable emails and fake credentials.

ETFbitcoin
Legendary
*
Offline Offline

Activity: 1988
Merit: 3118


NotYourKeys.org - Not Your Keys, Not Your Bitcoin


View Profile
October 26, 2020, 11:22:43 AM
 #6

Aside from cookie and tracking, don't forget the fact that some part of Ledger website uses CloudFlare Roll Eyes

Very sad to see good products that are ignoring the best private practices.

It's not surprising since business comes first and they only offer limited privacy (such as you can connect to their server/use their tools with VPN/Tor connection).

1GUARDIAN
Full Member
***
Offline Offline

Activity: 756
Merit: 112



View Profile
October 30, 2020, 12:42:40 PM
Last edit: October 30, 2020, 12:55:58 PM by 1GUARDIAN
 #7

In order not to be a guinea pig whose behavior is studied on every site you should install a blocker. For example, I have been using a tunnelbear blocker for this purpose for a long time.

You can read about it here -

https://www.tunnelbear.com/apps/blocker
bob123
Legendary
*
Offline Offline

Activity: 1596
Merit: 2408



View Profile WWW
November 02, 2020, 03:08:32 PM
 #8

And that's exactly why people who (at least somewhat) care about their privacy should use software (e.g. browser extensions) to block ads, trackers and javascript.

uBlock origin (for easy usage) or uMatrix (for advanced user) together with HTTPS Everywhere and NoScript are enough to not get tracked across the whole web by everyone while also browsing securely and limiting the attack surface.
Definitely recommendable.

ETFbitcoin
Legendary
*
Offline Offline

Activity: 1988
Merit: 3118


NotYourKeys.org - Not Your Keys, Not Your Bitcoin


View Profile
November 03, 2020, 10:36:55 AM
 #9

In order not to be a guinea pig whose behavior is studied on every site you should install a blocker. For example, I have been using a tunnelbear blocker for this purpose for a long time.

You can read about it here -

https://www.tunnelbear.com/apps/blocker

They're talking about privacy, but it's ironic to see their website have some ad-tracker & third-party cookies (https://themarkup.org/blacklight?url=www.tunnelbear.com).
Additionally, their software isn't open software while some VPN and browser extension does.

Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!