Why are traditional ad blockers showing their limits?
We've all, at some point, installed one of those little browser extensions just to stop seeing flashing banners everywhere. Except today, the trusty old ad blocker is starting to seriously sputter. Here's why — and what to do instead.
Adblockers still hide some ads, but they no longer shut off the data tap. Since Manifest V3 (Chrome) and the spread of Server-Side Ad Insertion, ads and trackers are becoming impossible to tell apart from the content. To actually protect your privacy in 2026, you have to combine browser-level blocking, a filtering DNS and data removal at the brokers.
The technical turning point that changed everything
For a good decade, the fight between ad blockers and ad networks looked like a fairly predictable cat-and-mouse game. A blocker would spot an ad domain and filter it, the network would spin up a new one, the extension would update its list. And overall, users were winning.
But the balance shifted on two fronts at the same time: from the browser side (Manifest V3) and from the publisher side (Server-Side Ad Insertion). Both shifts went largely unnoticed by the general public — and yet, between them, they have completely redrawn what an ad blocker can actually do in 2026.
Manifest V3: the update that weakens blockers
You may have heard of Manifest V3, an update pushed by Google Chrome — which still dominates the browser market by a wide margin. In essence, under the cover of improving security and performance, this standard drastically caps the number of filter rules an extension is allowed to use.
Concretely, three things change:
- Dynamic rule ceiling: where an extension could load hundreds of thousands of custom rules before, it's now limited to a fixed number set by Chrome. The most complete community filter lists just don't fit anymore.
- End of the blocking
webRequestAPI: this was the tool that let a blocker inspect each network request and decide in real time what to allow. It's been replaced by a far more passive API. - Centralised updates: new rules must now go through the Chrome Web Store, which slows down counter-moves against new trackers.
Direct consequence: blockers let through a lot more than before. uBlock Origin has even stopped being available in its full version on Chrome, with its developers now recommending Firefox to keep effective blocking.
SSAI: when the ad hides inside the stream
The other problem is what's called Server-Side Ad Insertion (SSAI). Publishers have figured out the trick, and they now stitch the ad straight into the content stream from their own servers, instead of relying on a third-party server that your blocker could spot easily.
For the blocker, that makes it nearly impossible to tell the difference between the video you want to watch and the ad in the middle of it. The ad and the content arrive through the same connection, in the same stream, from the same domain. That's exactly what YouTube has been doing at scale since 2023, which is why blockers regularly "stop working" on the platform.
And it's not just an issue of display. SSAI also lets publishers collect your activity at the server level without any third-party cookie, visible script or detectable ad domain on the browser side. Your blocker literally has nothing to filter.
The false sense of safety from adblockers alone
Should you bin your adblocker? Not really, it still helps a bit. But relying on it alone is a false sense of safety. Modern intrusive advertising goes hand in hand with background data collection — and even when you no longer see the banner, your data is still leaving.
Three mechanisms walk right past blockers today:
- Fingerprinting: your browser, screen resolution, installed fonts, time zone — combined, they form a unique signature that identifies you without a single cookie.
- Server-to-server data sharing: e-commerce sites send your data directly to ad networks from their own servers, never passing through your browser.
- Data brokers: these companies buy your information from your accounts, banks, loyalty apps and so on, and rebuild a detailed profile independently of what your browser does or doesn't block.
The strategy that actually works in 2026
To genuinely limit your exposure, hiding an image isn't enough anymore — you have to shut the data tap at several levels. Here's the approach that works today:
1. The right browser
Firefox (with Enhanced Tracking Protection turned up) and Brave (which ships natively with a blocker compatible with the older APIs) remain the most solid choices. Safari on Apple has also made big strides on tracker blocking.
2. A filtering DNS
NextDNS or AdGuard DNS block ad domains before your browser even sends the request. Because it works at the network layer, it sidesteps the whole Manifest V3 problem.
3. Removal at the source
This is where solutions like Sheeldy really come into their own. Blocking an ad or a tracker is showing up after the battle. Demanding the deletion of your data from the hundreds of brokers that profile you is cutting the supply upstream. When a data broker no longer holds your profile, no ad network can buy it from them, no matter what your browser does or doesn't allow.
Frequently asked questions
Is an ad blocker enough to protect my privacy in 2026?
What is Manifest V3 and why does it weaken ad blockers?
What is Server-Side Ad Insertion (SSAI)?
Should I uninstall my ad blocker?
What's an alternative to an ad blocker for blocking trackers?
In a nutshell
The adblocker isn't dead, but it's no longer enough on its own. In 2026, protecting your privacy demands a layered strategy: hardened browser, filtering DNS, and above all active removal of your data at the brokers feeding the entire ad chain. Hiding a banner treats the symptom. Removing your profile at the data brokers treats the cause.