Comments on: Exploit: Knowing the Websites your Visitors visit http://blog.stevepoland.com/exploit-knowing-the-websites-your-visitors-visit/ web entrepreneur | obsessed music fan | b-lo forever! Fri, 25 Jun 2010 14:32:45 -0700 http://wordpress.org/?v=2.8 hourly 1 By: » ClickJacking - ideas for this sneaky hack (Twitter, etc) - By Steve Poland - web startup ideas and brainstorms, straight up! (formerly Techquila Shots) http://blog.stevepoland.com/exploit-knowing-the-websites-your-visitors-visit/comment-page-1/#comment-5564 » ClickJacking - ideas for this sneaky hack (Twitter, etc) - By Steve Poland - web startup ideas and brainstorms, straight up! (formerly Techquila Shots) Thu, 22 Jan 2009 20:33:11 +0000 http://blog.stevepoland.com/?p=416#comment-5564 [...] a cookie gets set on the user’s machine. Of course, I’d tie this script in with the DOM hack that can tell you what websites the user has visited in the past (i.e. [...] [...] a cookie gets set on the user’s machine. Of course, I’d tie this script in with the DOM hack that can tell you what websites the user has visited in the past (i.e. [...]

]]> By: Scott Rafer http://blog.stevepoland.com/exploit-knowing-the-websites-your-visitors-visit/comment-page-1/#comment-5530 Scott Rafer Thu, 22 Jan 2009 01:17:15 +0000 http://blog.stevepoland.com/?p=416#comment-5530 Hi Steve, We appreciate the mention. I would like to emphasize two things: 1. The DOM exploit you mention isn't anything that Lookery would ever do. We avoid scraping pages *completely* to avoid picking up any PII. Keeping Lookery's system completely privacy-safe is critical to us. 2. The version of behavioral targeting in which "we can figure out your profile from where you've surfed" isn't one that we like the economics of -- nor should you or your readers. Your costs will outstrip the lift no matter how big you scale it. You'll just never catch up. Hi Steve,
We appreciate the mention. I would like to emphasize two things:
1. The DOM exploit you mention isn’t anything that Lookery would ever do. We avoid scraping pages *completely* to avoid picking up any PII. Keeping Lookery’s system completely privacy-safe is critical to us.
2. The version of behavioral targeting in which “we can figure out your profile from where you’ve surfed” isn’t one that we like the economics of — nor should you or your readers. Your costs will outstrip the lift no matter how big you scale it. You’ll just never catch up.

]]>