The Times Australia
The Times World News

.
The Times Real Estate

.

Instagram and Facebook are stalking you on websites accessed through their apps. What can you do about it?

  • Written by David Tuffley, Senior Lecturer in Applied Ethics & CyberSecurity, Griffith University
Instagram and Facebook are stalking you on websites accessed through their apps. What can you do about it?

Social media platforms have had some bad press[1] in recent times, largely prompted by the vast extent of their data collection. Now Meta, the parent company of Facebook and Instagram, has upped the ante.

Not content with following every move you make on its apps, Meta has reportedly devised a way to also know everything you do in external websites accessed through its apps. Why is it going to such lengths? And is there a way to avoid this surveillance?

‘Injecting’ code to follow you

Meta has a custom in-app browser that operates on Facebook, Instagram and any website you might click through to from both these apps.

Now ex-Google engineer and privacy researcher Felix Krause has discovered this proprietary browser has additional program code inserted into it. Krause developed a tool that found[2] Instagram and Facebook added up to 18 lines of code to websites visited through Meta’s in-app browsers.

This “code injection” enables user tracking and overrides tracking restrictions that browsers such as Chrome and Safari have in place. It allows Meta to collect sensitive user information, including “every button and link tapped, text selections, screenshots, as well as any form inputs, like passwords, addresses and credit card numbers”.

Krause published his findings[3] online on August 10, including samples of the actual code[4].

In response, Meta has said it isn’t doing anything users didn’t consent to. A Meta spokesperson said:

We intentionally developed this code to honour people’s [Ask to track] choices on our platforms […] The code allows us to aggregate user data before using it for targeted advertising or measurement purposes.

The “code” mentioned in the case is pcm.js[5] – a script that acts to aggregate a user’s browsing activities. Meta says the script is inserted based on whether users have given consent – and information gained is used only for advertising purposes.

So is it acting ethically? Well, the company has done due diligence by informing users of its intention to collect an expanded range[6] of data. However, it stopped short of making clear what the full implications of doing so would be.

People might give their consent to tracking in a more general sense, but “informed” consent implies full knowledge of the possible consequences. And, in this case, users were not explicitly made aware their activities on other sites could be followed through a code injection.

Why is Meta doing this?

Data are the central commodity of Meta’s business model. There is astronomical value in the amount of data Meta can collect by injecting a tracking code into third-party websites opened through the Instagram and Facebook apps.

At the same time, Meta’s business model is being threatened – and events from the recent past can help shed light on why it’s doing this in the first place.

It boils down to the fact that Apple (which owns the Safari browser), Google (which owns Chrome) and the Firefox browser are all actively placing restrictions on Meta’s ability to collect data.

Read more: Stuff-up or conspiracy? Whistleblowers claim Facebook deliberately let important non-news pages go down in news blackout[7]

Last year, Apple’s iOS 14.5 update came alongside a requirement[8] that all apps hosted on the Apple app store must get users’ explicit permission to track and collect their data across apps owned by other companies.

Meta has publicly[9] said this single iPhone alert is costing its Facebook business US$10 billion each year.

Apple’s Safari browser also applies a default setting to block all third-party “cookies”. These are little chunks of tracking code[10] that websites deposit on your computer and which tell the website’s owner about your visit to the site.

Google will also soon be phasing out third-party cookies. And Firefox recently announced “total cookie protection” to prevent so-called cross-page tracking.

In other words, Meta is being flanked by browsers introducing restrictions on extensive user data tracking. Its response was to create its own browser that circumvents these restrictions.

How can I protect myself?

On the bright side, users concerned about privacy do have some options.

The easiest way to stop Meta tracking your external activities through its in-app browser is to simply not use it; make sure you’re opening web pages in a trusted browser of choice such as Safari, Chrome or Firefox (via the screen shown below).

Click ‘open in browser’ to open a website in a trusted browser such as Safari. screenshot

If you can’t find this screen option, you can manually copy and paste the web address into a trusted browser.

Another option is to access the social media platforms via a browser. So instead of using the Instagram or Facebook app, visit the sites by entering their URL into your trusted browser’s search bar. This should also solve the tracking problem.

I’m not suggesting you ditch Facebook or Instagram altogether. We should be careful about our online activities like investigating properly before deciding to buy Instagram followers from Growthoid or other sources. We should all be aware of how our online movements and usage patterns may be carefully recorded and used in ways we’re not told about. Remember: on the internet, if the service is free, you’re probably the product.

Read more: Is it even possible to regulate Facebook effectively? Time and again, attempts have led to the same outcome[11]

References

  1. ^ press (theconversation.com)
  2. ^ found (krausefx.com)
  3. ^ findings (krausefx.com)
  4. ^ actual code (connect.facebook.net)
  5. ^ pcm.js (connect.facebook.net)
  6. ^ an expanded range (www.facebook.com)
  7. ^ Stuff-up or conspiracy? Whistleblowers claim Facebook deliberately let important non-news pages go down in news blackout (theconversation.com)
  8. ^ requirement (www.apple.com)
  9. ^ publicly (krausefx.com)
  10. ^ tracking code (www.trendmicro.com)
  11. ^ Is it even possible to regulate Facebook effectively? Time and again, attempts have led to the same outcome (theconversation.com)

Read more https://theconversation.com/instagram-and-facebook-are-stalking-you-on-websites-accessed-through-their-apps-what-can-you-do-about-it-188645

The Times Features

Exploring Hybrid Heating Systems for Modern Homes

Consequently, energy efficiency as well as sustainability are two major considerations prevalent in the current market for homeowners and businesses alike. Hence, integrated heat...

Are Dental Implants Right for You? Here’s What to Think About

Dental implants are now among the top solutions for those seeking to replace and improve their teeth. But are dental implants suitable for you? Here you will find out more about ...

Sunglasses don’t just look good – they’re good for you too. Here’s how to choose the right pair

Australians are exposed to some of the highest levels[1] of solar ultraviolet (UV) radiation in the world. While we tend to focus on avoiding UV damage to our skin, it’s impor...

How to Style the Pantone Color of the Year 2025 - Mocha Mousse

The Pantone Color of the Year never fails to set the tone for the coming year's design, fashion, and lifestyle trends. For 2025, Pantone has unveiled “Mocha Mousse,” a rich a...

How the Aussie summer has a profound effect on 'Climate Cravings’

Weather whiplash describes the rollercoaster-like shifts in weather we’ve experienced this summer —a blazing hot day one moment, followed by an unexpectedly chilly or rainy tur...

The heart research that could save fit and healthy Australians

Australians are now one step closer to being able to check that their heart is in working condition with a simple blood test. Leading scientists at the Heart Research Institu...

Times Magazine

Utilize Rip Rap Seawall for Shoreline Protection

A Rip Rap seawall is a type of coastal engineering structure that protects shorelines from wave erosion, which is composed of large stones or boulders placed in an interlocking pattern along the shoreline. The design of the seawall is to absorb and d...

Dan Murphy’s and BWS jewellery offer

Freixenet Wine has partnered with luxury Australian jeweller, Musson, to offer a chance to win a $30,000 in-store diamond experience where the winner can select a unique creation from the exclusive collection or enjoy an individual consultation t...

Simplify Your Business With Advanced Payroll Services

Advanced payroll services are an invaluable tool for businesses of all sizes. They offer a comprehensive suite of payroll solutions that streamline the process of managing employee pay and taxes, while also providing employers with real-time data a...

Dog Breeder Charged with Inhumane Puppy Farming

Breeders of all kinds of puppies are very common nowadays with more people looking to care for their new little furry pals at home. But if you’re looking to get your first dog or are just looking to add another pup to the pack, you’ll want to make su...

Sydney's Finest: How to Identify a Top-Tier SEO Company

In the dynamic realm of digital marketing, the success of your online presence relies heavily on effective search engine optimisation (SEO). A pivotal force in this journey is the SEO company you choose. In Sydney's competitive business landscape...

What Cycling Gear Do You Need the Most?

We believe everyone needs to prioritize their safety and comfort while cycling. That's why helmets top our list, as they're critical for protecting your head in case of an accident. We also can't overlook the importance of reflective clothing and lig...

LayBy Shopping