How does that work with HTTPS being practically ubiquitous?

rileymat2 · 2025-10-06T21:31:31 1759786291

HTTPS spills what services you are communicating with, but not the content…

…except approximate content sizes and timing patterns.

mr_mitm · 2025-10-07T06:18:54 1759817934

The GP claimed they can inject ads though

zubiaur · 2025-10-06T21:37:32 1759786652

They sell metadata. DNS queries, locations, apps using data, device info. Usually anonymized, but both unscrupulous and "better" providers do have access to your account and payment info.

mr_mitm · 2025-10-07T06:19:40 1759817980

GP claimed they can inject ads. How does that work with HTTPS?

zubiaur · 2025-10-09T17:35:22 1760031322

They can't inject to the http response, but ad servers that work with the VPN or their data brokers can better identify the requester and serve better targeted ads.

tredre3 · 2025-10-06T22:15:11 1759788911

I reckon that if HTTPS was sufficient to hide your online activity, then you wouldn't need a VPN to hide it in the first place.

Lammy · 2025-10-06T21:51:25 1759787485

If HTTPS were for privacy it would be called HTTPP. Security features tend to make things less Private, like how opening apps on a Mac makes it phone home for OCSP check.