Websites can monitor user activities without the use of cookies, as revealed by this report.

Websites can monitor user activities without the use of cookies, as revealed by this report.

In a groundbreaking study presented at the 2025 ACM Web Conference, researchers have shed light on the widespread use of browser fingerprinting for online tracking, a practice that has raised concerns in the privacy community[6]. The study's DOI is 10.1145/3696410.3714548[1].

Browser fingerprinting is a technique that identifies and tracks users based on unique characteristics of their browsers and devices, such as browser version, operating system, screen resolution, installed fonts, time zone, and language settings[1][3]. By combining these attributes, websites can create a unique "fingerprint" that can persist even if users clear cookies or use private browsing modes[1][5].

One of the key features of browser fingerprinting is passive data collection. Unlike cookies, fingerprinting does not require storing data on the user's device. Instead, it collects data through JavaScript and CSS execution on the device[3][5]. This method is particularly effective as cookies are being phased out, making fingerprinting a powerful alternative for tracking users online[1][5].

Another concerning aspect of browser fingerprinting is that it often occurs without user consent[1][5]. The study found that users who opted out of tracking under GDPR or CCPA were still fingerprinted, and tracking occurred even when cookies were deleted or cleared[2]. This practice operates in a gray zone, not always covered by rules targeting cookies or traditional tracking methods[2].

The information collected through browser fingerprinting could potentially be used for surveillance purposes, as well as for serving better ads and customizing offers based on a user's profile[1]. However, the researchers argue that this practice poses a significant threat to online privacy and hope that their findings will push for better laws regarding online privacy[1][4].

To mitigate the impact of browser fingerprinting, users can employ several strategies. Firstly, using privacy-focused browsers like Tor or Brave can limit the amount of information exposed[3]. Secondly, specialized browsers designed to alter or mask fingerprint attributes can help reduce tracking effectiveness[2]. Thirdly, browser extensions that randomize or block fingerprinting attempts can be useful[3]. Fourthly, keeping browsers and operating systems updated and regularly monitoring for signs of fingerprinting scripts on visited websites is also important[3]. Lastly, encouraging web standards to include protections against fingerprinting can limit the data that can be collected[3].

By employing these strategies, users can reduce their exposure to browser fingerprinting and better protect their online privacy. The tool FPTrace, built to observe changes in browser fingerprint and its impact on ad tracking, might become a valuable resource for regulators looking to build healthier laws and enforce existing rules regarding online tracking[1][4]. The study marks a significant turning point in the public understanding of online privacy, highlighting the need for increased awareness and protection against this stealthy form of tracking.

[1] Research paper: 10.1145/3696410.3714548 [2] Specialised browsers: https://en.wikipedia.org/wiki/Comparison_of_web_browsers#Privacy_and_security [3] Browser extensions: https://www.privacytools.io/browsers/ [4] FPTrace: https://fptrace.org/ [5] Cookies vs. browser fingerprinting: https://www.forbes.com/sites/johnkoetsier/2019/06/05/cookies-are-dead-long-live-cookies-browser-fingerprinting-is-the-new-way-to-track-you/?sh=6169294e4557 [6] ACM Web Conference: https://www.acm.org/conferences/webconf/

1. The study in the ACM Web Conference revealed that technology like browser fingerprinting can collect data through JavaScript and CSS execution, making it an effective alternative to cookies for tracking users in data-and-cloud-computing, even when users clear cookies or use private browsing modes.
2. The widespread use of browser fingerprinting for tracking raises concerns in the privacy community, as this technique, which identifies users based on unique characteristics of their browsers and devices, often occurs without user consent and could potentially be used for surveillance purposes.
3. In light of these concerns, researchers are advocating for increased regulation in tech and science, hoping that their findings will push for better laws regarding online privacy, and highlighting the need for users to employ strategies like using privacy-focused browsers, browser extensions, and keeping their devices updated to protect their health and secure their online privacy.

Read also: