Report: Presidential Campaign Sites 'Leak' Usernames
Web sites run by the campaigns of Barack Obama and Mitt Romney are "leaking" usernames and other potentially identifiable data, according to a new report by Stanford grad student Jonathan Mayer.
"The major presidential campaigns both fell short of best practices in their Web site design and testing," Mayer wrote Thursday in a blog post outlining his findings.
Mayer reports that referrer headers on several pages from the site BarackObama.com include the usernames of people who have registered with the site. Those usernames consist of a Facebook name (with the first and last name separated by a dot), or the first part of an email address (before the @ symbol).
Referrer headers on several pages from MittRomney.com also include names, and in some cases, partial email addresses and ZIP codes.
Those referrer headers can be seen by third parties that track visitors to the campaigns' sites. Mayer reports that 10 companies receive usernames from BarackObama.com: Akamai, Amazon, BrightTag, Chartbeat, Facebook, Google, Hoefler & Frere-Jones, New Relic, Think Realtime, and Zendesk. He says 13 companies receive partial email addresses from MittRomney.com: Adobe, Akamai, Amazon, Compete, comScore, Facebook, Google, Lotame, New Relic, Optimizely, Search Discovery, ShareThis, and Syncapse.
Both of the presidential campaigns reportedly are undertaking extensive efforts to track and target potential voters who visit the official campaign sites. The New York Times reported on Sunday that Evidon recently found 76 tracking programs on BarackObama.com, and 40 trackers on MittRomney.com.
The prospect of data leakage via referrer headers has been known since at least 1999, when Internet pioneer Tim Berners-Lee warned of that possibility. More recently, researchers from AT&T and Worcester Polytechnic Institute reported that many popular sites and social networks, like Facebook and MySpace, were leaking personally identifiable data.
After those reports came out, some sites revised the way they configured referrer headers.
Recent Online Media Daily Articles
-
Weather.com Develops Real-Time Data Ad Targeting May 17, 5:12 p.m.
Weather.com has begun using audience segmentation data from Lotame to develop real-time ad targeting services based ... -
MetroPCS Drops Challenge To Neutrality Rules May 17, 4:44 p.m.
T-Mobile's newly acquired MetroPCS withdrew its challenge to the Federal Communications Commission's net neutrality rules on ... -
'Geo-Conquesting' Drives Higher Mobile Click Rates May 17, 3:56 p.m.
The practice of conquesting -- running advertising for a brand or product near editorial content about ... -
Cox-Backed, Skyword Raises $6.7 Million To Enhance Content Creation May 17, 3:34 p.m.
Internet services and utilities will rely more on content as the industry matures. Shereta Williams, vice ... -
Ford, Jeep, Chevy Top Digital Auto Brands May 17, 1:09 p.m.
On the digital proving track, Detroit is beating out the competition. Ford, Jeep and Chevrolet were ... -
Choosing Sides: VivaKi Backs comScore; ABC Throws In With Nielsen May 17, 9:52 a.m.
In a battle to control the future of the ad industry’s currency, Nielsen and comScore each ... -
Yahoo Adds Tweets To News Feed May 16, 6:18 p.m.
Yahoo will incorporate selected tweets into the news feed on its redesigned home page through a ... -
Mozilla Puts Cookie-Blocking On Hold May 16, 6:16 p.m.
Mozilla is putting the brakes on plans to block third-party cookies by default in the upcoming ... -
Mobile Ad Results In Line With Rich Media May 16, 5:39 p.m.
Mobile display ads perform roughly on par with rich media ads in terms of click-through and ... -
Google Plans To Transition Brands Into Content-Driven Advertising May 16, 4:30 p.m.
Google wants technology to "step out of the way" as developers integrate it into everyday life. ...
Be the first to comment on "Report: Presidential Campaign Sites 'Leak' Usernames"
Leave a Comment