Techly NewsGet the app

Get the latest tech news

Meta and Yandex are de-anonymizing Android users’ web browsing identifiers


Abuse allows Meta and Yandex to attach persistent identifiers to detailed browsing histories.

Tracking code that Meta and Russia-based Yandex embed into millions of websites is de-anonymizing visitors by abusing legitimate Internet protocols, causing Chrome and other browsers to surreptitiously send unique identifiers to native apps installed on a device, researchers have discovered. “The developers in this report are using capabilities present in many browsers across iOS and Android in unintended ways that blatantly violate our security and privacy principles,” the representative said, referring to the people who write the Meta Pixel and Yandex Metrica JavaScript. The Meta Pixel script also sends the _fbp value in a request to https://www.facebook.com/tr along with other parameters such as page URL (dl), website and browser metadata, and the event type (ev) (e.g., PageView, AddToCart, Donate, Purchase).

Get the Android app

Or read this on ArsTechnica

Read more on:

Photo of Android

Android

Photo of Meta

Meta

Photo of Web

Web

Related news:

News photo

Covert Web-to-App Tracking via Localhost on Android

News photo

Adobe launches beta version of its Photoshop app on Android

News photo

Adobe Photoshop finally launches on Android

« Musk’s X Aims to Soothe EU Regulators With Blue Check Disclaimer
Sodium-air fuel cells may soon be electrifying airliners »