Web Browsing

Using an ad-blocker can help improve your privacy by blocking the trackers that ads implement. uBlock Origin is recommended open-source browser addon. When third-party ads are displayed on a webpage, they have the ability to track you, gathering personal information about you and your habits, which then would be sold or used to show you more targeted ads. Some ads are also malicious or fake. Blocking ads makes pages load faster, uses less data, and provides a better experience.

It may sound obvious, but when you sign into any online accounts or download software: double check if it's really an original website. If you use a search engine, often the top results are paid ads. Storing commonly visited sites in your bookmarks is a good way to ensure the URL is easy to find. When visiting new websites, look for common signs that it could be unsafe: browser warnings, multiple redirects, on-site spam and pop-ups. You can also check a website using a tool such as Virus Total or IsLegitSite if you are unsure.

Your browser has access to everything that you do online, so avoid Google Chrome, Microsoft Edge, and Apple Safari as (with default configuration) all three of them collect usage data, call home, and allow for invasive tracking. Firefox and Brave are more secure, privacy-respecting browsers. Both are fast, open source, user-friendly, and available on all major operating systems. But even Firefox requires quite a few changes to achieve optimal security.

It is recommended to update your browser's default search to a privacy-respecting search engine. Using such a non-tracking search engine will reduce the risk that your search terms are used against you. Consider DuckDuckGo, Qwant, or Brave Search. Google implements some incredibly invasive tracking policies and has a history of displaying biased search results. Therefore, Google, along with Bing, Baidu, Yahoo, and many others, are incompatible with anyone looking to protect their privacy.

Extensions (addons) can see, log, or modify anything you do in the browser, and some innocent-looking browser apps have malicious intentions. Websites can see which extensions you have installed and may use this to enhance your fingerprint, to more accurately identify/track you. Both Firefox and Chrome web stores allow you to check what permissions/access rights an extension requires before you install it. Check the reviews, GitHub repository, who's the author of the extension. Only install extensions you really need, and remove those which you installed just in case.

Do not allow your browser to store usernames and passwords. These can be easily accessed or exported. Example tool. Instead use a password manager.

If you enter information on a non-HTTPS website, this data is transported unencrypted and can therefore be read and modified by anyone along the route. Do not enter any data on a non-HTTPS website, but also do not let the green padlock give you a false sense of security. Just because a website has an SSL certificate does not mean that it is legitimate or trustworthy. Pay attention to the domain name: sometimes the difference between website.org and website.com can cost a fortune.

Traditional DNS makes requests in plain text, allowing for eavesdropping and web-filtering by your provider, which by default provides you with their DNS service. DNS-over-HTTPS performs DNS resolution via the HTTPS protocol, meaning data between you and your DNS resolver is encrypted. A popular option is CloudFlare's 1.1.1.1, which has instructions for all supported browsers.

When you're in a private/incognito window, it will prevent browser history, cookies, and some data from being saved, but you are still easily tracked unless you close all other browser windows and then connect to a VPN. Even then, it is not fool-proof, so keep in mind these functions are not really making your actions anonymous.

Browser fingerprinting is an incredibly accurate method of tracking, allowing a website to identify you based on your device information—even after you clear all cookies and session data. You can view your fingerprint at amiunique.org to see what parameters are evaluated. There is no perfect solution against fingerprinting, but using the Tor Browser and disabling JavaScript in your settings will reduce the data your browser leaks; although this will break many websites.

Blocking trackers will help prevent websites, advertisers, analytics, and more from tracking you on all websites you visit. Privacy Badger, DuckDuckGo Privacy Essentials, and uBlock Origin are all very effective, open-source tracker blockers available for all major browsers.

While some redirects are harmless, others, such as unvalidated redirects, are used in phishing attacks, making a malicious link seem legitimate. If you are unsure about a redirect URL, you can check where it forwards to with a tool like RedirectDetective. This applies to cases where you see a long URL with parameters you don't understand, which can look like https://legitimate-site.com/something/is?suspicious=b2ggeWVzIGl0J3MgZGVmaW5pdGVseSBzdXNwaWNpb3VzJw==.

Browser push notifications are a common method for criminals to spam you and make you click their links, as it is easy to spoof the source. Be aware of this; if a website asks you for permission to "Show notifications", you should block it in 99% of cases. How the prompt looks like?. For instructions on disabling browser notifications, see this article.