Announcement

We're EpicBrowser on Twitter and on Facebook. Email our Founder directly with questions as well: alok at hiddenreflex dot com
New Users: we've had to temporarily block new registrations due to spam. If you have a post or query, email it to Alok and he'll try to help you and or post it to the forum.

#1 Re: Privacy News, Privacy Violations, Privacy Discussions » AudioContext Fingerprint » 2016-12-02 08:39:44

alok_epicteam wrote:

Super post!!  We've also been impressed by that study (there's a great page detailing the results on investigating online tracking at the researchers website) and following the AudioContext API usage.  It's getting a bit of usage but growing so Epic will soon block it :-).

thank you so much

#2 Privacy News, Privacy Violations, Privacy Discussions » AudioContext Fingerprint » 2016-09-15 11:17:00

Robert
Replies: 4

A wide-scale study of online trackers carried out by researchers at Princeton University has identified a new technique being used to try to strip web users of their privacy, as well as quantifying the ongoing usage of some better-known tracking techniques.

The new technique unearthed by the study is based on fingerprinting a machine’s audio stack via the AudioContext API. So it’s not collecting sound played or recorded on a machine but rather harvesting the audio signature of the individual machine and using that as an identifier to track a web user.

https://techcrunch.com/2016/05/19/audio … udy-finds/


AudioContext Fingerprint Test Page
https://audiofingerprint.openwpm.com/

#3 Epic Privacy Browser - Other Feature Requests & Ideas » Fingerprints » 2016-06-18 14:45:24

Robert
Replies: 3

Browser fonts spoofing
Navigator object spoofing
Screen resolution spoofing

#6 Privacy News, Privacy Violations, Privacy Discussions » your browser has a nearly-unique fingerprint » 2015-12-22 09:26:03

Robert
Replies: 1

https://panopticlick.eff.org/tracker

Limited supercookie test
Hash of canvas fingerprint
Screen Size and Color Depth
Browser Plugin Details
Time Zone
DNT Header Enabled?
HTTP_ACCEPT Headers
Hash of WebGL fingerprint
Language
System Fonts
Platform
User Agent
Touch Suppor
Are Cookies Enabled?


PLEASE FIX !!!!

#7 Epic Privacy Browser - Help & Troubleshooting » Webpages doesn't open or load (being approved) » 2015-12-02 11:07:07

Robert
Replies: 1

Webpages doesn't open or load. Not working properly, beacuse Epic browser is very old.

no update for months :@ Chrome 47 released.

damn

#8 Privacy News, Privacy Violations, Privacy Discussions » Your smartphone and laptop battery life could endanger your privacy » 2015-08-06 11:31:43

Robert
Replies: 0

Think your private browsing session is really private? A new paper shows how your smartphone or laptop's battery can be used to compromise your privacy.

A HTML5 feature called the Battery Status API lets websites check the status of your device's battery with such precision that it could be used to track you in short time intervals, researchers claim. And that's even if you're using identity-concealing software such as Tor.

This happens because the Battery Status API can pull several pieces of information about your device's battery — level, charging time and discharging time. Combined, this data is nearly unique for each device, meaning it allows potential attackers to create a digital fingerprint of your device and track your activities on the web.

"In short time intervals, Battery Status API can be used to reinstantiate tracking identifiers of users, similar to evercookies. Moreover, battery information can be used in cases where a user can go to great lengths to clear her evercookies. In a corporate setting, where devices share similar characteristics and IP addresses, the battery information can be used to distinguish devices behind a NAT, of traditional tracking mechanisms do not work," the paper claims.

The paper, signed by French and Belgian security researchers Lukasz Olejnik, Gunes Acar, Claude Castelluccia, and Claudia Diaz, and first reported on by The Guardian, claims that, as of June 2015, Firefox, Opera and Chrome support the HTML5 feature.

This sort of tracking would be very hard to escape, since practically all devices are vulnerable. The risk is, however, higher for old or used batteries with reduced capacities.

According to the paper, the potential privacy issues of the Battery Status API have been discussed as early as 2012, but the API was not revised to alleviate them.

The issue is extremely easy to fix, researchers argue: Just make the battery readings less precise. By rounding the values down, none of the functionality would be lost, but it would be nearly impossible to track a user down.

http://mashable.com/2015/08/04/battery-privacy-html5/

#10 Re: Epic Windows Bugs » Massive memory leak with Epic Browser » 2015-07-28 13:30:24

PLEASE NEED UPDATE. I CANT USE EPIC BROWSER.

HUGE MEMORY LEAK

#11 Re: Privacy News, Privacy Violations, Privacy Discussions » is this true? » 2015-07-22 07:01:28

"that 'Administrator' making that response is delusional. I will not go into the whole thing, already said mostly, but will touch on these items:

The Epic fact says in their own words (the words of Hidden Reflex which is the company behind the Epic browser - the use of 'Epic' here is synonymous with Hidden Reflex) they earn "...commission on searches we drive" (commission is revenue you idiot) but contrary to that their faq also said "We believe that what you browse and search should be private. Your searches and browsing are no one’s business but your own." - so, if its no ones business what an Epic browser user searches or where they browse (you are also browsing when you search) .... yeah ok Epic, idiots, searches are also 'personal privacy information' and also according to Epic such things are privacy things also, and they earn, according to their faq, "...commission on searches we drive" (commission is revenue you idiot)  - then they are selling 'personal privacy information' they made their business contrary to their own words in their Faq that it was no one else's business. So apparently Epic does believe that those searches they drive for a user are also someone else's business namely the business of Epic. Yes Epic, you have sold that personal privacy information, how else does Epic earn "...commission on searches we drive", do you supply gerbils or maybe what you think are your good looks, and get commission for that? No you don't, you get commission, according to your own faq, from the searches you drive and a persons searches are 'personal privacy information'. To earn commission you provided something to get that commission and commission is revenue, if you provide that something to get that commission then you sold that something for that commission, if you make money from supplying it then you sold it, and that something was 'personal privacy information'. It can't be "no one’s business" but the user if Epic is making commission on it, Epic makes it their business contrary to their own words.

So an Epic browser user 'personal privacy information' was the business of the user, Epic, spotflux, and anyone else Epic or spotflux would supply that user 'personal privacy information' to so Epic can "earn commission".   

In addition that 'administrator' is further in delusion because spotflux does collect that information passing through their 'proxies' - the epic proxies used were a version of the free spotflux proxy service from which they do collect such information which spotflux, according to spotflux, supplies on to others so it is not true, as that delusional 'administrator' put it, that spotflux "never collected nor sold any personal data" because searches are 'personal privacy information data'.

No, it is not a lie, nor is it false, nor is it "illegal" to talk about Epic based upon what they say in their own faq and words. I suggest that 'administrator' find out what the word 'illegal' means before tossing it around. Yep, your right I have some strong opinions about Epic because I have an issue with, and strong opinions about, the internet community privacy being duped into what is basically a 'referral marketing' type scam tool technique disguised as a browser put forth like its a privacy browser when in reality you are selling off that 'personal privacy information' to make commission for what according to Epic is suppose to be "no one’s business" but the user and which Epic makes their business to earn "comission" and the business of others as well.

It is not really a 'privacy' browser and it is 'misrepresented', deliberately.

Ohhhh i'm all scared, some 'admin' person working for and/or on behalf of Epic says they "may try to hold that anonymous commentator responsible if we can figure out who it is. " - you frigging idiots, even if you know who it is there would not be one thing you could do about it. Its fair use and non-defamatory speech based upon your own public Faq as it was at the time it I wrote what I wrote, and still is now. If you do not want things talked about then don't make them public. Just what are you going to hold someone responsible for, telling the truth based upon Epic's own words?

And you "sasha123", you tried to solicit me via PM to send you a "pia freemium account. lifetime or 1 years" or share my PIA account with you, for which I turned you down flatly and told you "I am not going to share my PIA account with you" and told you to  "purchase the service like every one else", and I told you "Go away and stop harassing me with your nonsense and unsolicited communications PM's." what an idiot you are. So why don't you run back over to the Epic forums and stop trying to proliferate here this scamming you are involved in. "

https://www.privateinternetaccess.com/f … cy-browser

#15 Privacy News, Privacy Violations, Privacy Discussions » Chrome ( a critical update to Adobe Flash Player ) » 2015-07-14 13:39:08

Robert
Replies: 0

43.0.2357.134
This release contains a critical update to Adobe Flash Player (18.0.0.209) and a fix for a full screen casting issue.

#18 Privacy News, Privacy Violations, Privacy Discussions » is this true? » 2015-06-28 12:05:57

Robert
Replies: 5

There is indeed a 'history', its the personal privacy information they collect. What do you think they make a commission from? They make that commission from the collection of personal privacy information collected which includes the use history and searches from users of the Epic browser.

Claiming there is no 'WebRTC leak' issue with the Epic browser is deceptive misrepresentation. It has nothing to do with it because their proxy provider can still collect that IP information when one passes through the proxies used by the Epic browser, proxies designed to have the capability to collect such so their proxies provider (SpotFlux) can also make a buck from personal privacy information collection. Hidden Reflex, the creators of the Epic browser, has an agreement with SpotFlux that allows SpotFlux to also collect personal privacy information from users of the Epic browser. The Epic browser uses a version of the 'free' access to proxies which SpotFlux provides to its users of the free use of the SpotFlux vpn, SpotFlux tells you on their web site they collect personal privacy information from the users of the 'free' side of their service. SpotFlux is able to extract the real ISP IP address, even if one is on a VPN, from the connections through their proxies and connect it to the proxy provided IP address as in 'ISP-assigned-IP' = 'SpotFlux-driven-proxy-IP'.

No "Canvas" fingerprinting? What a joke. For those that do not know, "Canvas" fingerprinting is only one of a number of, what is called, browser fingerprinting techniques for tracking online users that allows websites to uniquely identify and track visitors using HTML5 canvas elements instead of other techniques. These other techniques still exist and are used, they do not suddenly vanish because the Epic browser might not include the HTML5 "Canvas" fingerprinting capability. The exclusion of "Canvas" fingerprinting does nothing to prevent browser fingerprinting techniques from being used nor does it prevent use of other techniques for collection of other personal privacy information collected through use of the Epic browser.

Saying there is no "Canvas" fingerprinting, WebRTC issues, no history, and a myriad of other things claimed for the Epic browser is like saying because one marble is removed from a jar of 100 marbles it means there are no more marbles in the jar.  Saying these things for the Epic browser as a means to support the perception that it is somehow a 'privacy' browser is deceptive misrepresentation.

Its not really a 'privacy' browser and is 'misrepresented' by its creators (Hidden Reflex) to take advantage of 'privacy' paranoia so as to get as many to install it as possible so they can make a buck from the personal privacy information they collect from the users of the Epic browser. The more that use it the more money they make. Its a 'referral marketing' scam tool technique that's been polished up to look all bright and shiny to take advantage of 'privacy' paranoia. Its a reversal of that scam technique where one gets notified they have won a 'free' something and to collect it all they need to do is send some money to such and such. In the case of the Epic browser, they give you the browser for free and then make money from you using it. Its designed to collect personal privacy information from its users for the specific purpose of Hidden Reflex making commission revenue by selling that personal privacy information to 'third parties', advertisers, and the information broker industry.

and... > https://www.privateinternetaccess.com/f … ment_30439

Any company/entity that makes revenue (commissions in this case) from the use of their 'free' something is not really your friend, the bottom line is the money and the money will win every time.

privateinternetaccess.com/forum/discussion/17955/epic-privacy-browser

#20 Re: Epic Privacy Browser - Privacy Features & Privacy Concerns » Anonymiy Leaks » 2015-06-24 07:23:27

alok wrote:

Hi Robert,
Thanks for posting those details.  Unfortunately, it's not so simple to just block everything...many sites stop working.  We're working on stopping more data leaks without breaking sites -- it's harder than it seems.   At present, we actively block known fingerprinting scripts...so even though that data is in theory accessible, if calls are made by a known fingerprinter/data collector, we are block them. 

Until we can block plugins, blocking a lot of that data isn't very helpful in terms of blocking fingerprinting because plugins leak all that data and more. 

Thanks for being vigilant and posting the leaks -- keep letting us know what you find.

Alok

thank you, I love you Epic.

it's not so simple to just block everything, please create a randomisation

#21 Re: Privacy News, Privacy Violations, Privacy Discussions » The Logjam Attack » 2015-06-24 07:19:32

alok wrote:

Thanks -- we're working on an update.

thank you.

The dev channel has been updated to 45.0.2438.3 for Windows, Mac, and Linux.

http://googlechromereleases.blogspot.co … te_23.html

#22 Privacy News, Privacy Violations, Privacy Discussions » The next google incursion » 2015-06-19 17:55:46

Robert
Replies: 0

Google has now dropped a closed-code audio listener into the latest version of Chromium. It will eavesdrop on your mic.

It will not be removable, but when it comes out, the way to disable it will be to disable "Ok Google" in settings:

disable-ok-google.jpg

#23 Re: Epic Privacy Browser - Privacy Features & Privacy Concerns » Anonymiy Leaks » 2015-06-08 11:50:45

sathi wrote:

@mex, need not to worry.  We are working on a solution to fix these things.

please update new version

#25 Re: Epic Privacy Browser - Help & Troubleshooting » Blank bookmark icons » 2015-06-03 16:52:58

sathi wrote:

Hi joelmael,

Thanks for the post. These icon images may leak your privacy sometimes. So, we had removed these.

not working...

Epic Version 40.0.2214.91
w7 x64

http://upload.dinhosting.fr/Q/e/q/Untitled.jpg

Board footer