uBlock Origin
Open-source content blocker. Blocks ads, trackers, and malware domains locally in your browser with zero data collection.
What should journalists know about uBlock Origin?
uBlock Origin is the single most effective thing you can install to reduce your digital footprint while browsing. It blocks the tracker ecosystem that can reveal your research interests to ad networks, data brokers, and anyone buying that data downstream. The Chrome situation is now complicated: Google killed Manifest V2 extensions in July 2025, but gorhill migrated uBlock Origin to MV3 and it returned to the Chrome Web Store at v1.70.0 in March 2026. The MV3 version uses declarativeNetRequest instead of webRequest, which means reduced dynamic filtering capability. Firefox remains the best platform — Mozilla committed to keeping the full webRequest API that uBlock Origin needs. Brave also maintains MV2 support for four specific extensions including uBlock Origin. The developer's refusal of all money eliminates every financial conflict of interest. No acceptable-ads program, no corporate partnerships, no telemetry. NOT the same as 'uBlock' (without 'Origin') — that's a different, inferior fork. Also beware Chrome Web Store clones: a 2025 EFF analysis found 73% of top-ranked 'uBlock'-branded Chrome extensions contained hidden tracking pixels or unauthorized remote code execution.
Blocking trackers that follow your research across sites. Reducing attack surface from malvertising. Privacy while browsing source websites. Stripping analytics that could log journalist visits.
Situations where you need to see ads (competitive research, ad verification). Some paywalled sites break with aggressive blocking. Not a replacement for a VPN or Tor when source protection matters.
Security & Privacy
Data is scrambled while being sent to their servers
Data is scrambled when stored on their servers
Where servers are located — affects which governments can request your data
Privacy policy summary
No data collection whatsoever. uBlock Origin operates entirely locally. No telemetry, no analytics, no phone-home behavior, no crash reporting. The extension requests broad permissions (access to all URLs) solely to perform content blocking — it transmits nothing.
How to protect yourself:
Use medium mode for stronger default blocking with manual whitelisting of trusted sites. Keep filter lists updated (they auto-update but check quarterly). If a site breaks, use the per-site switches before disabling entirely. Use the logger to understand what's being blocked — it's the most powerful diagnostic tool in any content blocker. On Chrome, understand you're now running the MV3 version with reduced dynamic filtering. On Firefox, you get the full MV2 experience. Install from official sources only: ublockorigin.com links to the real extension on each store.
Open source, zero data collection, zero monetization, zero financial conflicts. 39M+ combined users across Chrome (29M) and Firefox (10M+) as of late 2025. Code is publicly auditable on GitHub with cryptographically signed releases. One low-severity CVE in 2025, promptly patched. The developer's decade-long refusal of all money is unmatched in the extension ecosystem. Firefox version retains full MV2 capability; Chrome MV3 version is functional but reduced. The biggest real risk isn't the extension itself — it's installing a malicious clone by mistake.
Who Owns This
Known issues
CVE-2025-4215 (CVSS 3.7, low severity): inefficient regex in src/js/1p-filters.js could cause denial of service via crafted filter rules. Patched in v1.63.3b17. Chrome MV3 migration (v1.70.0) loses some dynamic filtering capability compared to MV2 — cosmetic placeholders appear on ~21% of sites under MV3 vs 0% under MV2, per a January 2026 PoPETs study. uBlock Origin Lite was pulled from the Firefox Add-on Store in October 2024 after a dispute with Mozilla reviewers who falsely accused it of data collection and minified code; Hill called the review process 'hostile' and moved the Lite version to self-hosted distribution on GitHub. The classic uBlock Origin extension on Firefox is unaffected. Malicious clones remain a persistent threat — always verify the publisher is 'Raymond Hill' before installing.
Pricing
Free. Open source under GPLv3. Raymond Hill explicitly refuses donations and has no monetization.
This is an editorial assessment based on publicly available information as of 2026-04-02, using our published methodology. Independent security review is pending. Security posture can change at any time. This is not a guarantee of safety.
Something wrong or outdated? Report it.