What are Super Cookies?

Unlike a traditional cookie, the super cookie is different because it is independent of the browser. These cookies are often created using Adobe Flash or Microsoft Silverlight, and when you visit a site that requires either of these programs, such as YouTube, you’re unknowingly opening your computer to the possibility of having a super cookie created.

Normal cookies are browser based, meaning that you can easily remove them via browser tools. Super cookies, however, can be triggered each and every time you visit a site with Flash enabled on it, thus allowing the cookie to collect data. Management of super cookies is not as simple;tools to deal with them are in their developmental infancy. Most alarming is the fact that many websites aren’t up front about using Flash technology on their site, therefore failing to alert visitors to the possibility of having their data tracked.

The issue of super cookies is a difficult one to deal with. As technology moves forward there will be measures created to deal with them, but super cookies are not the product of an ill intentioned individual. They are created and maintained by large corporations who collect this data in an effort to better understand and serve their customer base.

No matter which side of the cookie debate you’re on, the next time you visit a flash enabled site you’re likely allowing a cookie into your computer that will collect and transmit data.

How do they work ?

Normal HTTP cookies can’t save more than 4 Kilobyte of data while Super cookies can save up to 100 Kilobyte. Sometimes the reasons behind this type of tracking is to set two cookies on the user's machine. 1. A standard cookie that the user can erase. 2. A flash cookie that the user most likely does not know about because the existence of these flash cookies are not well known. This practice is very deceptive because by deleting your cookies, the user is clearly rejecting attempts to track them. Using this obscure technology to subvert these wishes is a practice that should be allowed.

Privacy Risk

One of the main problems with flash cookies is that browsers do not clear them when the user deletes the cookies on their machine. These Flash Cookies NEVER expire and some of them even contain the NAME OF YOUR COMPUTER and the FILE PATH/DIRECTORIES of certain files! These cookies are SHARED ACROSS DOMAINS, without our knowledge or permission. So not only is Flash insecure and unstable, it carries unauthorized cookies that ignore user preferences, and can be used as a Trojan to reinstate cookies that the user has flushed. Google was ordered to hand over all their records about WHAT VIDEOS we watch on YOUTUBE these details are presumably obtained via the FLASH PLAYER SECRET COOKIES we're implanting on our machines.

The Cookie List


Sometimes known as a transient cookie, stored in temporary memory and remains available for the duration of your active “session” within the browser.

session cookie...


Also known as a stored cookie, it stores a file on your hard drive. The cookie would remain on the hard drive until it reaches its expiration date.

persistent cookie...

Secure & HttpOnly

A secure cookie is just like a regular cookie, except it contains a special ‘HttpOnly’ flag that instructs the browser to restrict access to cookie data.

secure httponly cookie...

third party

Visit a web site, but have a cookie created by a completely different domain. This allows the third party domain to track you i.e. Tracking Cookies

third party Cookie...


Dangerous: Uses various techniques to resists deletion even when you clear your entire history they can remain hidden and reappear like a virus!

Super Cookie...


Dangerous: This is a cookie that can come back to life, hence the name Zombie. After it has been deleted it recreates itself.

Zombie Cookie...


This is an example of a VERY persistent cookie. A cross between Super and Zombie types of cookie.

Ever Cookie...