Privacy

3359 readers

139 users here now

Icon base by Lorc under CC BY 3.0 with modifications to add a gradient

founded 2 years ago

MODERATORS

Ategon@programming.dev

danielintempesta@programming.dev

Meta Found a New Way to Track Android Users Covertly via Facebook & Instagram (cybersecuritynews.com)

submitted 7 months ago by throws_lemy@lemmy.nz to c/privacy@programming.dev

7 comments fedilink hide all child comments

A sophisticated tracking method employed by Meta (Facebook) and Yandex that potentially affected billions of Android users through covert web-to-app communications via localhost sockets.

The technique allowed native Android apps, including Facebook and Instagram, to silently receive browser metadata, cookies, and commands from Meta Pixel scripts embedded on thousands of websites, effectively linking mobile browsing sessions to user identities and bypassing standard privacy protections.

you are viewing a single comment's thread
view the rest of the comments

[–] coconut@programming.dev 5 points 7 months ago (5 children)

I still can't comprehend why any script on any webpage is allowed to communicate with the localhost on a mobile device.

[–] Squizzy@lemmy.world 1 points 7 months ago (4 children)

Could you explain what this means, I dont understand the localhost but I keep seeing it.

load more comments (3 replies)