Hacker News new | past | comments | ask | show | jobs | submit login

Also, I never click on links in e-mails directly. For something like this I'd cut and paste the address it seems Google puts another layer of redirection in Gmail to spy on you ("data-saferedirecturl", whatever that does in their JS)



It's a valve they can shut off when the targets are detected to be phishing or malware, so the link breaks.

And, of course, tracking.


Since they control the rendering, they can shut it off by not hyperlinking the link or displaying a warning next to it, they don't need to put an always-on tracking mechanism in place that sends them click data even when the link is not determined to be malware.


I imagine that many organizations would like to know which of their employees did click a link that turns out to be malicious, so that the company can check those employees' computers for malware. Tracking could be useful for determining the severity of the damage done by a successful phishing attack.


For corporations on corporate computers fine, but this is Google tracking personal accounts.


Gmail can track when you cut the URL...


ah yes, let me instead manually type the url into a new chrome tab, google will have no idea I went there.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: