In 2010, browsers implemented a fix for CSS history sniffing. It worked for some use cases, but not all. Turns out it is REALLY hard to prevent leaks without breaking powerful features, ie “an open research problem crucial to the future of the Web” ieee-security.org/TC/SP2011/…