A few days ago I saw a news report said thousands of apps running Baidu code collect, leak personal data. Research shows that transfer of personal data and process data gathered by Baidu, it is easy to be intercepted.

A smartphone with an Android operating system and the Baidu Browser application is seen in this picture illustration take February 22, 1016


Those have been downloaded hundreds of millions of times.

The researchers at Canada-based Citizen Lab said they found the problems in an Android software development kit developed by Baidu. These affected Baidu’s mobile browser and apps developed by Baidu and other firms using the same kit. Baidu’s Windows browser was also affected, they said.

How to protect privacy online.

There have some way to protect your privacy online.

  1. Using safe browser. Some of the browser like Baidu Browser, Browser code does not protect personal privacy. You can use browser leak testing to test your using browser.
  2. VPV – virtual private networkIf you’re very serious about maintaining your anonymity, consider investing in a VPN solution. These services essentially allow you to disguise your traffic. Your real IP address will be hidden from the world, and your traffic will remain indecipherable to nosy ISPs or governments.
  3. DNS leak testing – Even if you’re using a privacy service (like a VPN) to hide your IP address, it’s still possible to give away clues to your identity via your DNS traffic. Thankfully, it’s easy to detect if your configuration is leaking your DNS information.
  4. Virtual machines – Keep in mind, your browser isn’t the only vector for third parties to invade your privacy. PDFs and other seemingly harmless files can serve as homing beacons, and potentially alert government entities when you’re viewing planted contraband. To prevent any sort of unintended breach of privacy, you should open suspect files inside of a virtual machine.
  5. HTTPS Everywhere browser extension – In spite of the infamous Heartbleed vulnerability, SSL is still your best bet for keeping your Web traffic safe from prying eyes. If you want to keep nosy packet sniffers out of your business, your Web traffic should always be going through SSL connections. Sadly, not every website supports SSL. Even worse, many websites that do support SSL still default to unencrypted connections — and the Electronic Frontier Foundation wants to change that. The HTTPS Everywhere browser extension, provided for free by the EFF, forces SSL connections on countless websites. Chrome, Firefox, and Opera users can all take advantage of this wonderful extension, and keep important Web traffic private and secure.

What measures do you think you probably should take, but don’t?

In my opinion, protect your privacy need to do following

  1. Don’t fill out your social media profile.
  2. Don’t using your birth day to make password.Use a password vault that generates and remembers strong and unique passwords.
  3. Lock down your hardware.