- The ‘Feeling Cute Challenge’ turns ugly after correctional officers abuse it 4 Years Ago
- How to watch ‘How High 2’ for free 4 Years Ago
- Swipe This! My ex-BFF keeps sliding into my DMs, but I don’t want to be friends Today 6:30 AM
- Watch ‘I Am Somebody’s Child: The Regina Louise Story’ for free Today 6:00 AM
- How to watch Barcelona vs. Real Sociedad for free Today 6:00 AM
- How to stream UFC Fight Night 149 for free Today 5:30 AM
- PDF Association dunks on Mueller report PDF Friday 7:33 PM
- Robert Downey Jr. says ‘Endgame’ finale is ‘best 8 minutes’ of any MCU film Friday 4:42 PM
- Elizabeth Warren calls on Congress to impeach Trump Friday 3:43 PM
- BlackBerry Messenger is still a thing—but not for much longer Friday 2:56 PM
- Matt Gaetz hires speechwriter fired by White House for attending white nationalist event Friday 1:33 PM
- Here’s why Elon Musk is a sheep on Twitter Friday 12:14 PM
- Trump is already running Facebook ads on the Mueller report Friday 12:07 PM
- 20 thoughtful gifts grads actually want Friday 12:00 PM
- 7 of the best psychological thriller movies on Shudder Friday 11:44 AM
Top Google exec mistakenly suggests Chrome’s incognito mode can foil the NSA
Between foreign hackers and the National Security Agency (NSA), how is an innocent Internet user supposed to browse the web free of government surveillance?
Except that’s wrong—completely, absolutely wrong. The casual and ill-informed suggestion, delivered from the highest levels of the company responsible for Chrome, is dangerous to anyone looking for real security advice.
Incognito mode does not protect users from surveillance. Schmidt’s statement was so blatantly incorrect that a member of the Google Chrome security team—i.e., one of Schmidt’s own employees—could only respond with a very exasperated facepalm.
Schmidt’s comments came during an interview at the Cato Institute in Washington D.C. He was asked if Google received detailed information from Chrome users that other browsers do not receive and, if it did, whether there was a danger that federal authorities would track said data.
“If you’re concerned, for whatever reason, you do not wish to be tracked by federal and state authorities, my strong recommendation is to use incognito mode, and that’s what people do,” Schmidt explained.
So what’s the problem here? Incognito mode is designed for—and serves—a completely different kind of privacy protection than the one Schmidt implied.
Repeat after me: Your web browser’s incognito mode is for porn and paywalls, not to hide from government surveillance.
— Christopher Soghoian (@csoghoian) December 16, 2014
Incognito mode deletes Chrome’s browsing history and other detritus that help track users around the Web. Chrome users who deploy incognito mode can, for example, prevent other people who access their computer from seeing their search history. Importantly, this deletion of local history logs does not at all affect external entities’ access to said history. ISPs can still see the traffic going back and forth between customers’ machines and their servers.
In other words, Schmidt’s comments suggest that he has never even opened incognito mode himself. If he had, he’d have seen this warning message.
Screengrab by author
Anyone who is concerned about snooping by federal authorities—the scenario in Schmidt’s example—will not find solace in incognito mode. Using incognito mode does not prevent IP address logging or online-behavior tracking, as the warning above makes clear.
Schmidt is, at least initially, referring specifically to incognito mode’s ability in regard to Google’s own data collection rather than in regard to government surveillance. However, he does go on to vastly overstate incognito modes overall abilities when he says it will help stop government tracking.
What Schmidt should have said was something like this: Use incognito mode if you don’t want your spouse to see the porn you look at and Tor if you don’t want the government looking over your virtual shoulder.
Editor’s note: This story was updated Dec. 18 for clarity.
Illustration via Fernando Alfonso III
Patrick Howell O'Neill is a notable cybersecurity reporter whose work has focused on the dark net, national security, and law enforcement. A former senior writer at the Daily Dot, O'Neill joined CyberScoop in October 2016. I am a cybersecurity journalist at CyberScoop. I cover the security industry, national security and law enforcement.