5 third-party cookies (.facebook.com ; .scorecardresearch.com ; .viglink.com ; .cdn.viglink.com ; www.facebook.com
74 (-3 which XDA related) third-party requests to 20 unique hosts (Google ; Criteo ; Facebook ; VigLink ; comScore ; Cloudflare ; Servebom)
You should remove that external stuff to increase our privacy, which also increase our security too.
The site loads fonts from Google Fonts. While these are hosted on resource-specific domains and no cookies are sent, Google could possibly cross-reference the data (IP and browser fingerprint) with other Google services to identify visitors. Do they? Their own FAQ is vague: "We do log records of the CSS and the font file requests, and access to this data is on a need-to-know basis and kept secure." What "need-to-know basis" means is not explained.
The site is loading libraries from one or more CDN:s.
The site is using Google Analytics. While this is a powerful tool, we think you should respect your users' privacy and not tell Google about them — at least not without your users' consent.