Personally I don't see why we should treat browser/web vulnerabilities that are ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		mindslight on July 13, 2024 \| parent \| context \| favorite \| on: Ad-tech setting 'Privacy-Preserving Attribution' i... Personally I don't see why we should treat browser/web vulnerabilities that are being abused for tracking any different than every other security vulnerability... apart from the discussion being warped by Doubleclick pumping out new browser vulnerabilities, baking them into web standards, and marketing them as "features" to be rapidly adopted.

JoshTriplett on July 13, 2024 [–]

Complete agreement; anything that can be used for tracking is a security vulnerability. That doesn't mean it's a top-priority security vulnerability on par with remote code execution, but there's already a whole vulnerability category for "information disclosure".

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact