Bild.de investigation. First strike three.

parent aff27286
# **Bild by Axel Springer** (bild.de)
![Bild with its blocker blocker blocked](/sites/bild.de/bild.jpg)
> “The Bild newspaper (or Bild-Zeitung, literally Picture Newspaper…) is a German tabloid published by Axel Springer AG.” – [Source](https://en.wikipedia.org/wiki/Bild).
## Strike three: Bild is off the Better web.
Bild was the site that inspried our [Three Strikes And You’re Out!](#three-strikes-and-you-re-out-) policy, so how fitting that they should be the first site to trigger it.
Since we wrote the [Strike Two](#strike-two-), section, below, Bild updated their blocking code to use malware-style functionality to effectively block Better from protecting you on iOS. (We could still circumvent their blocking on Mac using an additional Safari Extension but we can’t do this on iOS.)
We now classify Bild as a malware site. Since you cannot visit Bild in a manner that protects your human rights, the only way we can protect you from Bild is by removing it from the Better web.
What this means is that we are now actively blocking links to Bild from the web in general. This means that people running Better will no longer be accidentally exposed to Bild from search engine results or from other sites like Twitter.
### Blocked on the web in general
Any links that include bild.de on any web site are now removed.
### Blocked on Google
Here’s how Google search results look for Bild without Better enabled:
![Bild.de: Google, before blocking](/sites/bild.de/bild.de-google-before.jpg)
And with Better:
![Bild.de: Google, after blocking](/sites/bild.de/bild.de-google-after.jpg)
As you can see, the links for Bild’s site are no longer in the results and you cannot click from Google to Bild.
### Blocked on DuckDuckGo
Here’s how DuckDuckGo search results look for Bild without Better enabled:
> “The Bild newspaper (or Bild-Zeitung, literally Picture Newspaper…) is a German tabloid published by Axel Springer AG.” – [Source](https://en.wikipedia.org/wiki/Bild)
![Bild.de: DuckDuckGo, before blocking](/sites/bild.de/bild.de-duckduckgo-before.jpg)
And with Better:
![Bild.de: DuckDuckGo, after blocking](/sites/bild.de/bild.de-duckduckgo-after.jpg)
Similarly to Google results, the links are no longer visible and you cannot click them to get to Bild.
### Blocked on Twitter
We have also blocked links from Twitter to Bild. This is how Bild’s Twitter account looks without Better enabled:
![Bild.de: Twitter, before blocking](/sites/bild.de/bild.de-twitter-before.jpg)
And with Better:
![Bild.de: Twitter, after blocking](/sites/bild.de/bild.de-twitter-after.jpg)
As you can see, the links to Bild’s web site have also been removed on Twitter.
Please let us know if you notice any links on the Web to this malware site that are not being blocked by Better and we will look into it.
To the folks at Bild, we can only say this: Stop acting like malware and we will stop treating you like malware. Until that time, the Better web is perfectly happy without you.
## Strike two…
![Bild with its blocker blocker blocked](/sites/bild.de/bild.jpg)
Today, we are implementing a new policy to deal with malicious sites that actively threaten people’s safety on the web. **If we are prevented from protecting you from trackers on a site, we will treat the site as malicious and remove it from your web experience.** By filtering out malicious sites, we will enable sites that [respect human rights, effort, and experience](https://ind.ie/ethical-design) to rise to the top of search results.
The inspiration for this comes from a German tabloid, Bild, owned by Axel Springer. Last week, one of our customers [alerted us that Bild was detecting Better and refusing people access to their site](https://twitter.com/dahanbn/status/758027299316965376) unless they turned it off. This is unacceptable as turning Better means leaving yourself open to behavioural tracking and other web malware. As we’ve already seen, when [Forbes](/sites/forbes.com) did the same thing, [people who turned off their blockers were subsequently infected with malware served from Forbes’s advertising network](http://www.extremetech.com/internet/220696-forbes-forces-readers-to-turn-off-ad-blockers-promptly-serves-malware).
......@@ -20,6 +74,7 @@ While we are currently able to protect people from tracking and malicious advert
Instead, we are now implementing a “Three Strikes And You’re Out!” policy. **If you make it difficult for us to protect people from tracking and malicious advertising on your site, we will treat your site as malicious and protect our customers by removing you from their web experience.**
### Three Strikes And You’re Out!
This outlines our policy for dealing with aggressive and malicious sites that threaten the privacy and safety of people on the web:
......@@ -109,5 +164,92 @@ Statistics by [Better Inspector](https://source.ind.ie/better/inspector) based o
## Block rules
See [Ignore Previous Rules section](/trackers/Ω-ignore-previous-rules) for the blocker blocker blocker rule.
### Remove links to Bild.de from the web in general.
```mson
- trigger:
- url-filter: .*
- action:
- selector: a[href*="bild.de"]
- type: css-display-none
```
### Remove links to Bild.de from Twitter.
Twitter uses t.co shortening URLs.
```mson
- trigger:
- url-filter: twitter.com
- action:
- selector: a[title*="bild.de"]
- type: css-display-none
```
### Remove links to Bild’s Twitter account.
```mson
- trigger:
- url-filter: .*
- action:
- selector: a[href$="twitter.com/bild"], a[href$="twitter.com/BILD"]
- type: css-display-none
```
### Remove links to Bild’s Twitter account on Twitter.
```mson
- trigger:
- url-filter: twitter.com
- action:
- selector: a[href^="/BILD"], a[href^="/bild"]
- type: css-display-none
```
### Remove links to Bild’s Facebook account.
```mson
- trigger:
- url-filter: .*
- action:
- selector: a[href$="facebook.com/bild"]
- type: css-display-none
```
### Remove links to Bild’s Google+.
```mson
- trigger:
- url-filter: .*
- action:
- selector: a[href$="google.com/+bildde"]
- type: css-display-none
```
### Remove links to Bild.de from DuckDuckGo.
```mson
- trigger:
- url-filter: duckduckgo.com
- action:
- selector: div[data-domain*="bild.de"]
- type: css-display-none
```
### Block Bild.de from loading.
```mson
- trigger:
- url-filter: bild.de
- load-type: first-party
- action:
- type: block
```
```mson
- trigger:
- url-filter: www.bild.de
- load-type: first-party
- action:
- type: block
```
# **CITY A.M.** (cityam.com)
> “City A.M. is a free, business-focused newspaper distributed in and around London, England.” – [Source](https://en.wikipedia.org/wiki/City_A.M.)
## Currently under investigation for blocking Better.
## Ethical design violations
(Learn more about [Ethical Design](https://ind.ie/ethical-design).)
<!-- Automatic: the trackers list is generated and updated by Better Inspector. Please do not edit manually. -->
<!-- trackersList -->
* Trackers
* fonts.googleapis.com
* crwdcntrl.net
* idio.co
* googletagmanager.com
* google-analytics.com
* googletagservices.com
* googleadservices.com
* googlesyndication.com
* google.com
* d31qbv1cthcecs.cloudfront.net
* quantserve.com
* gstatic.com
* mxpnl.com
* d5nxst8fruw4z.cloudfront.net
* amazonaws.com
* doubleclick.net
* omtrdc.net
* mixpanel.com
* google.se
* a58015255b1fe1c6818701e3899b3eb3e.profile.mxp4.cloudfront.net
* www.googleapis.com
* chartbeat.com
* chartbeat.net
* agkn.com
* eyeota.net
* addthis.com
* adnxs.com
* rlcdn.com
* nexac.com
* bluekai.com
<!-- /trackersList -->
<!-- Manual: You may manually add other ethical design violation badges here. Delete this comment and
do not leave empty lines between the /trackersList comment, above, and the new list items if you do.
Valid badges are:
* Aggressive
* Doorslam
* Clickbait
* Fingerprint
* Web bug
-->
<!-- Automatic: the After Better section is generated and updated by Better Inspector. Please do not edit manually. -->
## After Better
* Requests: <!-- requestsBefore -->134 requests<!-- /requestsBefore --> to <!-- requestsAfter -->95 requests<!-- /requestsAfter --> (<!-- requestsBlocked -->39 requests<!-- /requestsBlocked --> blocked, <!-- deltaRequests -->29% Safer<!-- /deltaRequests -->)
* Weight: <!-- sizeBefore -->1.67 MB<!-- /sizeBefore --> to <!-- sizeAfter -->1.52 MB<!-- /sizeAfter --> (<!-- sizeSaved -->160.87 KB<!-- /sizeSaved --> saved, <!-- deltaSize -->9% Lighter<!-- /deltaSize -->)
* Speed: <!-- timeBefore -->8.84 seconds<!-- /timeBefore --> to <!-- timeAfter -->5.13 seconds<!-- /timeAfter --> (<!-- timeSaved -->3.71 seconds<!-- /timeSaved --> saved, <!-- deltaTime -->42% Faster<!-- /deltaTime -->)
Statistics by [Better Inspector](https://source.ind.ie/better/inspector) based on [the page](https://archive.better.fyi/cityam.com.har.gz) as on <!-- lastUpdate -->Monday, November 7th 2016<!-- /lastUpdate -->
<!-- Manual: Add block rules (site fixes, first-party blocking, etc.) for this site (if any), here.
## Block rules
### A block rule
Some explanation of the block rule.
```mson
- trigger:
- url-filter: some.resource
- load-type: first-party
- action:
- type: block
```
-->
# **PageFair** (pagefair.com)
> Malware service that prevents people from protecting themselves from being tracked on the Web by blocking tracker protection.
## Under investigation
## Ethical design violations
(Learn more about [Ethical Design](https://ind.ie/ethical-design).)
<!-- Automatic: the trackers list is generated and updated by Better Inspector. Please do not edit manually. -->
<!-- trackersList -->
* Trackers
* fonts.googleapis.com
* gstatic.com
* disqus.com
* google-analytics.com
* doubleclick.net
<!-- /trackersList -->
* Aggressive
<!-- Manual: You may manually add other ethical design violation badges here. Delete this comment and
do not leave empty lines between the /trackersList comment, above, and the new list items if you do.
Valid badges are:
* Doorslam
* Clickbait
* Fingerprint
* Web bug
-->
<!-- Automatic: the After Better section is generated and updated by Better Inspector. Please do not edit manually. -->
## After Better
* Requests: <!-- requestsBefore -->45 requests<!-- /requestsBefore --> to <!-- requestsAfter -->42 requests<!-- /requestsAfter --> (<!-- requestsBlocked -->3 requests<!-- /requestsBlocked --> blocked, <!-- deltaRequests -->7% Safer<!-- /deltaRequests -->)
* Weight: <!-- sizeBefore -->2.84 MB<!-- /sizeBefore --> to <!-- sizeAfter -->2.83 MB<!-- /sizeAfter --> (<!-- sizeSaved -->12.76 KB<!-- /sizeSaved --> saved, <!-- deltaSize -->0% Lighter<!-- /deltaSize -->)
* Speed: <!-- timeBefore -->7.38 seconds<!-- /timeBefore --> to <!-- timeAfter -->7.17 seconds<!-- /timeAfter --> (<!-- timeSaved -->0.21 seconds<!-- /timeSaved --> saved, <!-- deltaTime -->3% Faster<!-- /deltaTime -->)
Statistics by [Better Inspector](https://source.ind.ie/better/inspector) based on [the page](https://archive.better.fyi/pagefair.com.har.gz) as on <!-- lastUpdate -->Monday, November 7th 2016<!-- /lastUpdate -->
## Block rules
### Block PageFair URLs
```mson
pagefair.com
```
```mson
pagefair.net
```
\ No newline at end of file
# **Adition Technologies AG** (adition.com)
> “ADITION technologies AG designs and develops ad-serving solutions.” – [Source](http://www.bloomberg.com/research/stocks/private/snapshot.asp?privcapid=215890334)
## Ethical design violations
(Learn more about [Ethical Design](https://ind.ie/ethical-design).)
* Tracker
<!-- Other ethical design violation badges go here. Valid ones are:
* Aggressive
* Doorslam
* Clickbait
* Fingerprint
* Web bug
-->
## Block rule
<!--
The original block rule is automatically generated by Better Inspector.
If you want to edit it, you may. The Inspector will not touch your edits
in future passes.
-->
**Block domain** adition.com
```mson
adition.com
```
## Prevalence
<!-- prevalence -->
**Moderate:** found on 0.6% of surveyed sites (33 instances observed).
<!-- /prevalence -->
## Notes
* [Privacy Policy](https://www.adition.com/en/contact/privacy/)
# **Contact Impact (contactimpact.de)** (adrolays.de)
> “Wir liefern innovative Services für die digitale Werbeaussteuerung.” – [Source](https://www.contactimpact.de)
## Ethical design violations
(Learn more about [Ethical Design](https://ind.ie/ethical-design).)
* Tracker
<!-- Other ethical design violation badges go here. Valid ones are:
* Aggressive
* Doorslam
* Clickbait
* Fingerprint
* Web bug
-->
## Block rule
<!--
The original block rule is automatically generated by Better Inspector.
If you want to edit it, you may. The Inspector will not touch your edits
in future passes.
-->
**Block domain** adrolays.de
```mson
adrolays.de
```
## Prevalence
<!-- prevalence -->
**Low:** found on 1 surveyed site.
<!-- /prevalence -->
## Notes
* None yet.
# **Adrtx by ascio** (adrtx.net)
> “Ascio Technologies Inc. provides domain registration and management solutions.” – [Source](http://www.bloomberg.com/research/stocks/private/snapshot.asp?privcapid=1988867)
## Ethical design violations
(Learn more about [Ethical Design](https://ind.ie/ethical-design).)
* Tracker
<!-- Other ethical design violation badges go here. Valid ones are:
* Aggressive
* Doorslam
* Clickbait
* Fingerprint
* Web bug
-->
## Block rule
<!--
The original block rule is automatically generated by Better Inspector.
If you want to edit it, you may. The Inspector will not touch your edits
in future passes.
-->
**Block domain** adrtx.net
```mson
adrtx.net
```
## Prevalence
<!-- prevalence -->
**Moderate:** found on 0.3% of surveyed sites (17 instances observed).
<!-- /prevalence -->
## Notes
* No home page at domain.
* Whois: belongs to [Ascio Technologies, Inc.](http://www.ascio.com) ([Source](https://www.threatminer.org/domain.php?q=api.adrtx.net))
# **Unidentified tracker** by Axel Springer AG (atsfi.de)
> As found on [Bild](/sites/bild.de)
## Ethical design violations
(Learn more about [Ethical Design](https://ind.ie/ethical-design).)
* Tracker
<!-- Other ethical design violation badges go here. Valid ones are:
* Aggressive
* Doorslam
* Clickbait
* Fingerprint
* Web bug
-->
## Block rule
<!--
The original block rule is automatically generated by Better Inspector.
If you want to edit it, you may. The Inspector will not touch your edits
in future passes.
-->
**Block domain** atsfi.de
```mson
- trigger:
- url-filter: atsfi.de
- load-type: third-party
- action:
- type: block
```
## Prevalence
<!-- prevalence -->
**Low:** found on 2 surveyed sites.
<!-- /prevalence -->
## Notes
* Domain leads to empty page with form input. No owner info.
* Whois: owned by Axel Springer AG
\ No newline at end of file
# **Bild static asset server** (bildstatic.de)
> Categorised as malware. See [Bild](/sites/bild.de)
## Ethical design violations
(Learn more about [Ethical Design](https://ind.ie/ethical-design).)
* Tracker
<!-- Other ethical design violation badges go here. Valid ones are:
* Aggressive
* Doorslam
* Clickbait
* Fingerprint
* Web bug
-->
## Block rule
<!--
The original block rule is automatically generated by Better Inspector.
If you want to edit it, you may. The Inspector will not touch your edits
in future passes.
-->
**Block domain** bildstatic.de
```mson
bildstatic.de
```
## Prevalence
<!-- prevalence -->
**Low:** found on 1 surveyed site.
<!-- /prevalence -->
## Notes
* None yet.
# **DF-SRV** (df-srv.de)
> No site at domain
## Ethical design violations
(Learn more about [Ethical Design](https://ind.ie/ethical-design).)
* Tracker
<!-- Other ethical design violation badges go here. Valid ones are:
* Aggressive
* Doorslam
* Clickbait
* Fingerprint
* Web bug
-->
## Block rule
<!--
The original block rule is automatically generated by Better Inspector.
If you want to edit it, you may. The Inspector will not touch your edits
in future passes.
-->
**Block domain** df-srv.de
```mson
- trigger:
- url-filter: df-srv.de
- load-type: third-party
- action:
- type: block
```
## Prevalence
<!-- prevalence -->
**Low:** found on 4 surveyed sites.
<!-- /prevalence -->
## Notes
* Found on [Bild][/sites/bild.de/]
* No domain at site
* Whois: belongs to Roland von Herget
\ No newline at end of file
......@@ -33,7 +33,7 @@ doubleclick.net
## Prevalence
<!-- prevalence -->
**Pandemic:** found on 54.0% of surveyed sites (3233 instances observed).
**Pandemic:** found on 54.1% of surveyed sites (3234 instances observed).
<!-- /prevalence -->
......
# **emetriq by T-Mobile** (emetriq.de)
> “We are joining forces with key industry players to create Germany’s biggest data pool.” – [Source](https://www.emetriq.com/en/)
## Ethical design violations
(Learn more about [Ethical Design](https://ind.ie/ethical-design).)
* Tracker
<!-- Other ethical design violation badges go here. Valid ones are:
* Aggressive
* Doorslam
* Clickbait
* Fingerprint
* Web bug
-->
## Block rule
<!--
The original block rule is automatically generated by Better Inspector.
If you want to edit it, you may. The Inspector will not touch your edits
in future passes.
-->
**Block domain** emetriq.de
```mson
- trigger:
- url-filter: emetriq.de
- load-type: third-party
- action:
- type: block
```
## Prevalence
<!-- prevalence -->
**Moderate:** found on 0.4% of surveyed sites (25 instances observed).
<!-- /prevalence -->
## Notes
* [Privacy policy](https://www.emetriq.com/en/data-privacy/)
......@@ -36,7 +36,7 @@ Although the content itself is allowed to load, we block cookies to make sure th
## Prevalence
<!-- prevalence -->
**Pandemic:** found on 28.6% of surveyed sites (1710 instances observed).
**Pandemic:** found on 28.6% of surveyed sites (1711 instances observed).
<!-- /prevalence -->
## Notes
......
......@@ -33,7 +33,7 @@ google-analytics.com
## Prevalence
<!-- prevalence -->
**Pandemic:** found on 63.9% of surveyed sites (3825 instances observed).
**Pandemic:** found on 63.9% of surveyed sites (3826 instances observed).
<!-- /prevalence -->
......
......@@ -43,7 +43,7 @@ metric.gstatic.com
## Prevalence