The New York Times reports on the results of a Carnegie Mellon University (CMU) study that reveal that "large numbers of Web sites...appear to be using a loophole that circumvents Internet Explorer's ability to block cookies." Researchers at CMU's CyLab found that a third of 33,000 sites studied contained code errors that let the browser install cookies despite privacy settings to reject them. According to Lorrie Cranor, director of the CyLab Usable Privacy and Security Laboratory, the code errors create a loophole for those using voluntary compact policies to describe their privacy practices. Instead of the cookies being rejected, the browser lets them install. (Registration may be required to access this story.)
If you want to comment on this post, you need to login.