Techly NewsGet the app

Get the latest tech news

Meta and Yandex are de-anonymizing Android users' web browsing identifiers


Abuse allows Meta and Yandex to attach persistent identifiers to detailed browsing histories.

Tracking code that Meta and Russia-based Yandex embed into millions of websites is de-anonymizing visitors by abusing legitimate Internet protocols, causing Chrome and other browsers to surreptitiously send unique identifiers to native apps installed on a device, researchers have discovered. “The developers in this report are using capabilities present in many browsers across iOS and Android in unintended ways that blatantly violate our security and privacy principles,” the representative said, referring to the people who write the Meta Pixel and Yandex Metrica JavaScript. The Meta Pixel script also sends the _fbp value in a request to https://www.facebook.com/tr along with other parameters such as page URL (dl), website and browser metadata, and the event type (ev) (e.g., PageView, AddToCart, Donate, Purchase).

Get the Android app

Or read this on Hacker News

Read more on:

Photo of Android

Android

Photo of Meta

Meta

Photo of Web

Web

Related news:

News photo

Android malware Crocodilus adds fake contacts to spoof trusted callers

News photo

Meta wants to replace its human workers with AI to review privacy and societal risks

News photo

Google quietly launches AI Edge Gallery, letting Android phones run AI without the cloud

« How to watch Black Voices in Gaming at Summer Game Fest 2025
NYC Drivers Who Run Red Lights Get Tickets. E-Bike Riders Get Court Dates »