Skip to content
Naked Security Naked Security

Firefox isn’t adding ads, it’s ‘sponsored content’

Mozilla promises all the revenue-generating analytics, none of the privacy-skewering.

You know that whole “nothing is free” thing about online content? About how the big internet companies may look like they’re giving away content – we’re not making out checks to Google or Facebook, after all – but they’re making plenty of moolah from advertising and selling our data? We are, as it’s often said, the product.
Mozilla says bunk to all that. We can expect to see sponsored links in the open-source Firefox browser as of next week, but we don’t have to sell our souls to get Mozilla the extra revenue it needs to survive. Mozilla says all the analytics will happen on the client side, keeping users’ data private.
That’s according to a post written by Nate Weiner, the founder and CEO of Pocket. Mozilla acquired the company, which makes the underlying technology, early last year.
Weiner said that we need high-quality content. At its best, the internet makes us laugh, it makes us think, it teaches us, and it brings us new perspectives. Content producers, for better or worse, depend on advertising to bring it to us. But the model just isn’t working anymore, he said, what with user privacy withering away and junk clickbait squeezing out the good stuff:

Unfortunately, today, this advertising model is broken. It doesn’t respect user privacy, it’s not transparent, and it lacks control, all the while starting to move us toward low quality, clickbait content.

Of course, anybody who’s watched the ongoing brawl between content producers, adblockers, adblocker blockers and adblock blocker blockers knows that it’s not pretty out there.
We’ve seen some interesting approaches to trying to fix this mess. The Brave browser is one such. Launched in 2016, the idea is to pay Bitcoin to users who agree to view “clean” ads or to pay sites in exchange for having their ads blocked.
Another approach is Google Chrome’s ad filter that aims to mop up the worst offenders, leaving you with just ads that don’t make you feel like throwing your laptop out of the window.
Using Pocket, Mozilla set out a few months ago to see if it could get personalized, high-quality experiences to users without those users having to fork over their data and privacy. Weiner said the experiment was a success:

We’ve come to accept a premise around advertising today that users need to trade their privacy and data in exchange for personalized, high quality experiences. Our experiments over the last few months have proved that this isn’t true.

Since the start of the year, Mozilla’s been showing some Firefox users links to recommended content on its New Tab page. Some of the recommendations are sponsored, with content producers paying to be included in the list of recommendations. The links were made available in the Nightly and Beta releases as of Monday. In Firefox 60, due to ship on 9 May, the feature will be available to all Firefox users in the US.
You can check out Mozilla’s activity stream on GitHub for details on how the company is protecting privacy while still delivering personalized content.

Mozilla swears it’s not sending users’ specific browsing behavior, or the sites they visit, to any Mozilla server. Rather, data is sent to its servers in the form of discreet HTTPS pings or messages whenever users do something on the Activity Stream about:home or about:newtab pages.

We try to minimize the amount and frequency of pings by batching them together. Pings are sent in JSON serialized format.
At Mozilla, we take your privacy very seriously. The Activity Stream page will never send any data that could personally identify you. We do not transmit what you are browsing, searches you perform or any private settings. Activity Stream does not set or send cookies, and uses Transport Layer Security to securely transmit data to Mozilla servers.

Mozilla says that data collected from Activity Stream is retained on Mozilla secured servers for 30 days before being rolled up into an anonymous, aggregated format. After that, the raw data will be permanently deleted. Mozilla says it never shares data with any third party. If that’s still too much for some users, it is possible to opt out of Firefox’s data collection altogether.


For all the hand-wringing over privacy, Mozilla continues to receive the lion’s share of its income from a deal with Google that makes Google Search the browser’s default search engine in the USA.


This might be naivety, but Mozilla is one of the few company’s that i trust with things like this. when i read the title of this article i thought “Great, now i need to find a new browser”, but i think that they are handling this in a responsible way (if what they are telling us is true)


With massive ad networks having been infamously infiltrated by malware in the past, ads aren’t just a privacy issue. Ads are a security problem as well.
We’re not talking about malware ads served up on fly-by-night websites with dubious content, either. We’re talking about adware on large, popular, trusted sites, such as Forbes, DailyMotion, Microsoft, Google, and Reader’s Digest.


Here’s some existing material about malicious ads (malvertising) that we did back in 2016:


Firefox isn’t adding ads, it’s ‘sponsored content’
I’m not closing Firefox; I’m ‘reducing ads.’


…but seriously, an interesting idea.
I’d like to see a Ducklinesque breakdown of the jargon-splattered non-English wherein the everyday netizen can digest the subtleties between this…and other anonymized metadata that *can* be compiled into big data to be de-anonymized.


The article below is not exactly what you are after but it is an interesting (alarming?) study of how much detail you can recover, or at least infer, from very *un*detailed data, given enough of it:


There is the browser IceCat. It’s derived from Firefox ESR sources with a high emphasis on on free code.


I have been seeing this sponsored content for a while because I usually use a Firefox nightly build (Pre-Beta) for regular day to day browsing.
The way it works, is when I open a new tab, I get a row of Recommended links that show up alongside links to my favourite sites from my browsing history. Sometimes the links are interesting and I follow them, sometimes not, but either way it is unobtrusive, and it does not bother me. If Mozilla gets a bit of money by driving traffic to sites that pay them then so much the better.


Leave a Reply

Your email address will not be published. Required fields are marked *

Subscribe to get the latest updates in your inbox.
Which categories are you interested in?
You’re now subscribed!