Replies (53)
It'd be cool if they respected privacy a little ffs
Does instagram / whatsapp do the same?
If you have ever met a Facebook employee, you would know that they don't even respect each other's privacy internally. Much less other people's.
Probably
Shit
I can't imagine the level of psychosis
Why is there a "meta analytics" script on most web sites.
If you are selling ads or buying ads, you have to add to increase their effectiveness. It also gives you a complete report of what type of people visit your website. Everybody loves it.
Niiiiice
😡
Ingenious
Never ever ever run Meta software on your device
Don’t be stupid
View quoted note →get zucked
Vitor Pamplona
How do Facebook and Instagram apps track what you do in the browser, even in incognito mode?
Meta apps start a local server on the phone and keep it running in the background. The Meta analytics script, running on most websites, pings any "localhost" server with the anonymized tracker ID for that session. The app then associates the browser ID with your Meta account, and voilà, all your browsing history is now linked to your Facebook account.
Android is designed to block such things, but Meta found a workaround using basic Sockets and transmitting the tracker ID in the initial handshake of a WebRTC (voice call) request. It's genius and evil as fuck.
“Localhost tracking” explained. It could cost Meta 32 billion.
You just can't finish off Zuckerberg.
What if you use FB and Insta only in Browser ? No native apps ?
Got my answer ..
@GrapheneOS does this work on GrapheneOS?
Por si no había argumentos suficientes para replantearte las formas de socializar en internet:
Vitor Pamplona
How do Facebook and Instagram apps track what you do in the browser, even in incognito mode?
Meta apps start a local server on the phone and keep it running in the background. The Meta analytics script, running on most websites, pings any "localhost" server with the anonymized tracker ID for that session. The app then associates the browser ID with your Meta account, and voilà, all your browsing history is now linked to your Facebook account.
Android is designed to block such things, but Meta found a workaround using basic Sockets and transmitting the tracker ID in the initial handshake of a WebRTC (voice call) request. It's genius and evil as fuck.
“Localhost tracking” explained. It could cost Meta 32 billion.
You just can't finish off Zuckerberg.
No wonder #Meta wont do their own phone ! .. and #Apple did what they did to double check user consent ! Not saying fruit company is all good !
Vitor Pamplona
How do Facebook and Instagram apps track what you do in the browser, even in incognito mode?
Meta apps start a local server on the phone and keep it running in the background. The Meta analytics script, running on most websites, pings any "localhost" server with the anonymized tracker ID for that session. The app then associates the browser ID with your Meta account, and voilà, all your browsing history is now linked to your Facebook account.
Android is designed to block such things, but Meta found a workaround using basic Sockets and transmitting the tracker ID in the initial handshake of a WebRTC (voice call) request. It's genius and evil as fuck.
“Localhost tracking” explained. It could cost Meta 32 billion.
You just can't finish off Zuckerberg.
Great Article!
This requires having the Facebook mobile app installed though which is responsible for running the background service. If one doesn't have the Facebook mobile app installed, this doesn't work the way it is described?
That also a os which supports (same local server)
where?
I only have Facebook Messenger on my phone. Wonder if they're still spying. But I don't use their social medias so they ain't making any money out of it..
You still show up in the analytics of all the websites you visited. They don't care if you don't use their apps. They can track that you saw their ad and you bought something without having to use their app. Facebook gets paid when that conversion happens.
But I'm not seeing any ads by meta??
Facebook (confirmed), Instagram (confirmed), WhatsApp (unconfirmed), Messenger (unconfirmed), Threads (unconfirmed), etc...
GM
It will work just as well with meta's other apps like WhatsApp, Instagram, etc
But yeah, it requires the company who wants to track you to have an app installed and running on your phone.
GM
I guess I'm not too shocked by this. Any company in the ads business is probably doing something similar. It's a good thing I don't have Instagram or Facebook installed on my device and haven't visited the site since 2017.
The native app is basically running a background service that the web pixel connects to. So it isn't really a problem with web browsers.
So they can track and analyse the users who visit the site, what content they consume and what products they buy.
This information is sold both to the website owner (when they buy ads on meta's platforms) but also packaged up and sold on to companies that make a living from interpretating that data and selling it (down to the detail level of households and/or individuals).
Use Firefox+ublock origin, install a DNS adblocker like pi-hole on your network and last but not least: if you have to use their crap, do it in an isolated environment (virtual machine for example).
Vitor Pamplona
Needless to say, this works on any Browser and any app that runs JavaScript and can display webviews inside of it, including some Nostr apps.
Issues like this are why Amethyst doesn't display Twitter preview cards and play YouTube videos: they all need JavaScript.
View quoted note →
Interesting. This works also if you don't have a Facebook account and/or their mobile app?
@Vitor Pamplona 's report said something about the mobile app installing a local server.
I use Brave everywhere sort of hoping it does something there but haven't really looked into what that is that is does I admit.
[Privacidad]
Mi compañero de trinchera Jorge García Herrero haciendo fácil lo difícil en Zero Party Data. La newsletter que no te puedes perder.
Y encima se lo marca en inglés y en español.
Un artista como un campano.
Bravo, privacy warriors.
#hola #HispaNostrs #hispano #español
Vitor Pamplona
How do Facebook and Instagram apps track what you do in the browser, even in incognito mode?
Meta apps start a local server on the phone and keep it running in the background. The Meta analytics script, running on most websites, pings any "localhost" server with the anonymized tracker ID for that session. The app then associates the browser ID with your Meta account, and voilà, all your browsing history is now linked to your Facebook account.
Android is designed to block such things, but Meta found a workaround using basic Sockets and transmitting the tracker ID in the initial handshake of a WebRTC (voice call) request. It's genius and evil as fuck.
“Localhost tracking” explained. It could cost Meta 32 billion.
You just can't finish off Zuckerberg.
Yep. You don't need a Facebook account to be tracked. They just correlate everything you click on and report it back.
Brave blocks meta scripts by default and replace it with their own ad tracking stuff.
Similar to how Apple also blocks and forces Meta to use Apple Ad identifiers instead. Which in the end can be correlated together.
Ok but that's just like any other tracking cookie.
Not that they're good but it's not the next level what with the local server
Good article.
Don't tell me you don't get educated on #Nostr 👇👇👇💯💯💯💯👌👌👌
View quoted note →They can make money by selling your data to governments
GM
Make it your goal to NEVER run any Meta apps on your phone.
I have had this rule for several years now.
It's sometimes a pain being unable to be in (e.g. sports/social) groups run by WhatsApp normies, but the advantages easily outweigh the disadvantages. It's such a joy not seeing the relentless virtue signalling and group replies.
Another huge silver lining: by refusing to use WA, you can bring many more family and friends to Signal.
View quoted note →Thanks for sharing, Vitor!
I deleted my last Zuckerborg account and all data in 2022.
My gut feeling always told me to opt out of Zuckerborg.
Oh I hate these apps so much. And they increasingly make the mobile website version unusable. Evil companies.
i disagree
If I need to Instagram or Facebook something I open it with Brave with automatic cash/history deletion every time I close the tab. No fucking meta apps (and no WhatsApp at all). But what an evil bitches they are!
🤯😱
Truly clever stuff.
as evil as Chinese apps
Brave blocks local host
Do you know if livre wolf/iron fox offers any protection?
Ps: I use noscript, which blocks all Javascript except what I approve
Would help If the JS name of this was disclosed
A real patriot uses only local spyware!
