Are your searches going where you think they are?

Dirty pool in the search business

By  

According to a couple of recent studies and unreasonably understated warnings from public-interest groups, when you type a search into Bing or Yahoo! and hit Enter, your search may not go straight to the search provider, which will misinterpret it (Bing) or amateurishly answer it (Yahoo!).

Nor will it always to go Google, if you prefer a search provider that can satisfy your curiosity and invade your privacy at the same time.

Instead it will go to a third-party marketing firm called Paxfire (or a competitor), which tries to match your query with ads already in their databases and send you back results for which the companies you locate have paid, according to reports from the EFF and others.

The result is not only usually useless, it's offensive, more invasive of your privacy than you've already acknowledged by searching for your heart's deepest desire on an unencrypted Internet connection in the first place, and deceptive.

It's deceptive because everyone I know uses search or other services on the Internet according to their experience with how well that service works for their needs particularly and none appreciates having a one of "sponsored" query responses at the top of a page, popups that keep them from seeing any of the results in the first place or so many ads on the resulting page that you can't tell whether your PC was hijacked by viruses, rather than your search being hijacked by marketing weasels.

I have to admit having seen some stories about this bit of appalling abuse of customers – usually by ISPs (which you already pay for both the Internet access and DNS connection), rather than the search providers.

Past-and-future colleague Steven J. Vaughan-Nichols, on the other hand, picked tip about Paxfire and ran with it, going into more detail about how the hijacking works and how to avoid it using either DNS services different from those provided by your ISP, or secure, encrypted connections to search engines that don't let ISPs recognize a query and redirect it.

He offers links to the reports, open DNS providers, Firefox add-ons to help avoid the hijacks and a pointer to the ICSI Netalyzr test-suite you can use to figure out if you're being hijacked as well.

This issue doesn't carry the same weight as the national-security-threatening five-year cyberwar McAfee reported last week, but it directly affects a lot more people, most of them several times per day.

Join us:
Facebook

Twitter

Pinterest

Tumblr

LinkedIn

Google+

SecurityWhite Papers & Webcasts

See more White Papers | Webcasts

Answers - Powered by ITworld

Join us:
Facebook

Twitter

Pinterest

Tumblr

LinkedIn

Google+

Ask a Question