Are You Sure You Want to Contact Us? Quantifying the Leakage of PII via Website Contact Forms

Oleksii Starov, Phillipa Gill, Nick Nikiforakis
<span title="2016-01-01">2016</span> <i title="Walter de Gruyter GmbH"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/feed3pdnijhbnm6huwkkxavghy" style="color: black;">Proceedings on Privacy Enhancing Technologies</a> </i> &nbsp;
The majority of commercial websites provide users the ability to contact them via dedicated contact pages. In these pages, users are typically requested to provide their names, email addresses, and reason for contacting the website. This effectively makes contact pages a gateway from being anonymous or pseudonymous, i.e., identified via stateful and stateless identifiers, to being eponymous. As such, the environment where users provide their personally identifiable information (PII) has to be
more &raquo; ... usted and free from intentional and unintentional information leaks. In this paper, we report on the first large-scale study of PII leakage via contact pages of the 100,000 most popular sites of the web. We develop a reliable methodology for identifying and interacting with contact forms as well as techniques that allow us to discover the leakage of PII towards thirdparties, even when that information is obfuscated. Using these methods, we witness the leakage of PII towards third-parties in a wide range of ways, including the leakage through third-party form submissions, third-party scripts that collect PII information from a first-party page, and unintended leakage through a browser's Referer header. To recover the lost control of users over their PII, we design and develop Formlock, a browser extension that warns the user when contact forms are using PII-leaking practices, and provides the ability to comprehensively lock-down a form so that a user's details cannot be, neither accidentally, nor intentionally, leaked to third parties
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1515/popets-2015-0028">doi:10.1515/popets-2015-0028</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/journals/popets/StarovGN16.html">dblp:journals/popets/StarovGN16</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/xxw32vzz75f7zeb33w2sdes6ii">fatcat:xxw32vzz75f7zeb33w2sdes6ii</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20190501155846/https://content.sciendo.com/downloadpdf/journals/popets/2016/1/article-p20.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/75/be/75be3aa1ee96fb8302fbf8540a5512a4b29337e3.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1515/popets-2015-0028"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="unlock alternate icon" style="background-color: #fb971f;"></i> degruyter.com </button> </a>