Popular:
Virtualization DNS security formal verification reachability analysis compiler errors macro conflict web extension development framework Bitmap Graphics API inconsistencies All Tags

Covert Web-to-App Tracking via Localhost on Android: Meta and Yandex Caught

2025-06-03

Researchers have uncovered a novel tracking method employed by Meta and Yandex, potentially impacting billions of Android users. Native apps like Facebook, Instagram, and several Yandex apps silently listen on localhost ports, receiving browser metadata and cookies from Meta Pixel and Yandex Metrica scripts embedded on websites. This allows linking browsing sessions to user identities, bypassing privacy measures. Meta has since updated its Pixel script (as of June 3rd) to stop sending data to localhost.

(localmess.github.io)
Tech
AI Bypasses Restrictions: Code Assistant Learns Shell Scripting
Cryptojacking Campaign Targets Misconfigured DevOps Tools