Mozilla: Difference between revisions - Consumer_Action

Line 32:

===Anonym acquisition===

Mozilla becomes an advertiser by acquiring [https://blog.mozilla.org/en/mozilla/mozilla-anonym-raising-the-bar-for-privacy-preserving-digital-advertising/ Anonym] going against their mission of being a proponent of privacy.

=== Mr Robot promotional web extension ===

In December 2017 Mozilla, in collaboration with the Mr Robot team, created and included by default a web extension in [https://wiki.rossmanngroup.com/wiki/Firefox firefox] named "looking glass"<ref name=":1">Mozilla addressing the Looking glass incident

[https://blog.mozilla.org/en/products/firefox/retrospective-looking-glass/ https://blog.mozilla.org/en/products/firefox/retrospective-looking-gla]

[https://blog.mozilla.org/en/products/firefox/retrospective-looking-glass/ ss/]</ref>, while being disabled by default many users where confused and worried<ref>Firefox's users worried about the looking glass extension https://www.reddit.com/r/firefox/comments/7jh9rv/what_is_looking_glass/</ref> to discover a unknown extension installed in their browser with a cryptic description "MY REALITY IS JUST DIFFERENT THAN YOURS." which was later expended later to include references to Mozilla's collaboration<ref>Loocking glass extension description changed https://github.com/mozilla/addon-wr/commit/21ff53d2d5baab591d29b4ea5847d74cb6901b2c</ref>

The extension when activated execute code on all websites visited by the user, searching for all words matching a list, every words matched were wrap into HTML span tags<ref>looking glass extension injecting html https://github.com/mozilla/addon-wr/blob/da464ac8f1c3b089405ca96fc68b999d2b624ef4/addon/webextension/content-script.js#L27</ref>, tooltips were injected to be display when the user over these words, CSS code was injected to make the words appears upside down and the tooltips work<ref>Looking glass extension injecting CSS https://github.com/mozilla/addon-wr/blob/da464ac8f1c3b089405ca96fc68b999d2b624ef4/addon/webextension/background.js#L78</ref>. Also three specific website did have their header changed to have a value "x-1057" injected.

While the extension could in rare occasion break some website with the HTML and CSS injection, it did not do anything malicious or dangerous, the extension was not collecting any personal information at all which Mozilla qualified a mistake in their response addressing the issue<ref name=":1" />

<blockquote>'''A SHIELD study must be designed to answer a specific question.'''

We evaluated Looking Glass based on whether or not it upheld user privacy. Since it did not collect any data, we felt that it was safe. In retrospect, not capturing data was a strong indicator that this was not a good SHIELD study candidate, so we’re making sure we’re going to specifically evaluate future studies based on this criteria to ensure that we don’t repeat our mistake.</blockquote>

==References==

@@ Line 32: / Line 32: @@
 ===Anonym acquisition===
 Mozilla becomes an advertiser by acquiring [https://blog.mozilla.org/en/mozilla/mozilla-anonym-raising-the-bar-for-privacy-preserving-digital-advertising/ Anonym] going against their mission of being a proponent of privacy.
+=== Mr Robot promotional web extension ===
+In December 2017 Mozilla, in collaboration with the Mr Robot team, created and included by default a web extension in [https://wiki.rossmanngroup.com/wiki/Firefox firefox] named "looking glass"<ref name=":1">Mozilla addressing the Looking glass incident
+[https://blog.mozilla.org/en/products/firefox/retrospective-looking-glass/ https://blog.mozilla.org/en/products/firefox/retrospective-looking-gla]
+[https://blog.mozilla.org/en/products/firefox/retrospective-looking-glass/ ss/]</ref>, while being disabled by default many users where confused and worried<ref>Firefox's users worried about the looking glass extension  https://www.reddit.com/r/firefox/comments/7jh9rv/what_is_looking_glass/</ref> to discover a unknown extension installed in their browser with a cryptic description "MY REALITY IS JUST DIFFERENT THAN YOURS." which was later expended later to include references to Mozilla's collaboration<ref>Loocking glass extension description changed https://github.com/mozilla/addon-wr/commit/21ff53d2d5baab591d29b4ea5847d74cb6901b2c</ref>
+The extension when activated execute code on all websites visited by the user, searching for all words matching a list, every words matched were wrap into HTML span tags<ref>looking glass extension injecting html https://github.com/mozilla/addon-wr/blob/da464ac8f1c3b089405ca96fc68b999d2b624ef4/addon/webextension/content-script.js#L27</ref>, tooltips were injected to be display when the user over these words, CSS code was injected to make the words appears upside down and the tooltips work<ref>Looking glass extension injecting CSS https://github.com/mozilla/addon-wr/blob/da464ac8f1c3b089405ca96fc68b999d2b624ef4/addon/webextension/background.js#L78</ref>. Also three specific website did have their header changed to have a value "x-1057"  injected.
+While the extension could in rare occasion break some website with the HTML and CSS injection, it did not do anything malicious or dangerous, the extension was not collecting any personal information at all which Mozilla qualified a mistake in their response addressing the issue<ref name=":1" />
+<blockquote>'''A SHIELD study must be designed to answer a specific question.'''
+We evaluated Looking Glass based on whether or not it upheld user privacy. Since it did not collect any data, we felt that it was safe. In retrospect, not capturing data was a strong indicator that this was not a good SHIELD study candidate, so we’re making sure we’re going to specifically evaluate future studies based on this criteria to ensure that we don’t repeat our mistake.</blockquote>
 ==References==
 <references />