You just can't finish off Zuckerberg.

“Meta devised an ingenious system (“localhost tracking”) that bypassed Android’s sandbox protections to identify you while browsing on your mobile phone — even if you used a VPN, the browser’s incognito mode, and refused or deleted cookies in every session.”

  • mctoasterson@reddthat.com
    7112·
    3 days ago

    Its reliant on running a normie phone and OS, and running the native FB, instagram, or other apps in the Meta constellation. These apps create persistent services that internally backchannel sensitive browser data back to them via internal ports. All browser traffic on devices running these apps should be considered compromised.

    The solution is to run Graphene or other de-googled OS and avoid Meta apps like the plague.

    • Bob Robertson IX @discuss.tchncs.deEnglish
      931·
      3 days ago

      The solution is to have stronger privacy laws.

      If everyone followed your solution then Graphene will become the normie os and Facebook will start targeting it. Choosing an esoteric system for yourself is a good way for a free people to protect their privacy, but it won’t scale.

      When we write our new constitution we need to include privacy as a right.

      • the_abecedarian@piefed.socialOPEnglish
        341·
        3 days ago

        grapheneOS isn’t security through obscurity, they make efforts to harden the phone’s privacy. You’re right that, if it was mainstream, Meta would target it directly though.

        The solution is to remove the profit motive from acquiring, selling, and monetizing our data. Laws alone don’t stop big corps from doing things.

      • unhrpetby@sh.itjust.worksEnglish
        41·
        3 days ago

        The solution is to have stronger privacy laws.

        Many people have the power to make certain privacy attacks impossible right now. I consider making that change better for those people than adding a law which can’t stop the behavior, but just adds a negative incentive.

        I wouldn’t wait around for the law to prosecute MITM attacks, I would use end to end encryption.

        Choosing an esoteric system for yourself is a good way for a free people to protect their privacy, but it won’t scale.

        If this is referencing using a barely-used system as a privacy or security protection, then I would regard that as bad protection.

        Everyone using GrapheneOS would be a net security upgrade. All the protections in place wouldn’t just fade away now that Facebook wants to spy on that OS. They’re still in place; Facebook’s job is still harder than it otherwise would be.

        • n0face@lemmy.wtfEnglish
          5·
          3 days ago

          The problem is that GrapheneOS is only available for Pixel devices.

          I really wish they would support other manufacturers, because I don’t really trust Google to make decent hardware (and to be frank, I don’t trust them with anything at all).

          • Little8Lost@lemmy.worldEnglish
            4·
            3 days ago

            I use e/os which is at least de-googled & based on Lineage
            Its not exactly Graphene but it works on 8+ old devices of various manifacturers

            • n0face@lemmy.wtfEnglish
              3·
              3 days ago

              I am very keen to get a Fairphone with e/os next time I switch devices.

              Does it work well with Android Auto? I can’t drive much without a map and my music playlist.

              • Little8Lost@lemmy.worldEnglish
                2·
                15 hours ago

                did not test that but here is a page how to “google” the “de-googled” os for supporting that
                https://doc.e.foundation/support-topics/android-auto

                because of that lineage could be a better option

                About Fairphone: there is an alternative (Shiftphone) that is more expensive but with the main plus points of having a higher storage option and the mainboard is replaceable, they also have somewhere a cheap (~200€) phone that should work if you really just need a phone
                (i mention that as an option, because having choice is always better even if it ends up being the first thing that gets choosen)

    • Grapho@lemmy.ml
      401·
      3 days ago

      The solution is public execution of at least a few tech CEOs. Then you’ll see how quick the invisible hand of the market seems to stop demanding profit maximization via spyware.

    • Kbobabob@lemmy.world
      2·
      2 days ago

      The solution is to run Graphene or other de-googled OS and avoid Meta apps like the plague.

      FTFY

      Doesn’t matter what OS you use.

    • Clent@lemmy.dbzer0.comEnglish
      11·
      3 days ago

      Almost sounds like you’re blaming the user while also not understanding that a de-google phone isn’t the solution because it’s not part of the tracking.

      • uxellodunum@lemmy.mlEnglish
        5·
        2 days ago

        While this is true, it’s worth clarifying that GrapheneOS in particular is able to run apps sandboxed, so they can’t communicate with eachother as they can on a stock OS.

        Having said that, no one should expect that their right to privacy is given (or fought for), unless they take it first. Yes, laws and all, but user education is the bigger issue.

        Users were onboarded onto the Internet before they had an understanding of the differences between cyberspace and meatspace, and how that could affect them. Placing the blame (and solutions) solely on third-parties is a dangerous mistake.

      • mctoasterson@reddthat.com
        1·
        2 days ago

        No, it is Meta and these companies fault, but I focus on things I can actually control. Just spewing the party line default Lemmy opinion of “capitalism is the problem, blah” doesn’t do anything to solve the problem.

        Educating people so they understand how the surveillance works, and explaining that there are alternatives, actually gets us closer to a solution.