Mozilla has started using DNS over HTTPS by default for their browsers. The Verge has a piece explaining some of the details. The short story is that when you type in a web address, that information is typically sent to the Domain Name Server (DNS) unencrypted – even if the actual site uses encryption. That means that companies that run the various network infrastructure can collect the site data and sell it.
Mozilla’s move doesn’t completely obfuscate what sites you’re going to, but it will make it more difficult for the US carriers like Verizon and AT&T to harvest the data and sell it to advertisers.
The flip side to this is that it will be harder for security and law enforcement to find illegal or dangerous sites. Also other browsers support this capability, but it is buried in the setting menus. Mozilla’s big change is that it enables the feature by default.
Yet another piece of the privacy vs security debate…