Meta and Yandex are de-anonymizing Android users' web browsing identifiers
Briefly

Meta and Yandex have been found to abuse web protocols to associate unique tracking identifiers with users' browsing histories on various websites. This misuse allows them to create persistent mobile app identities from transient web identifiers. Despite Android's security measures, including sandboxing, these strategies effectively allow the companies to bypass the intended privacy controls, compromising user anonymity and data integrity. Google is reportedly investigating these practices amid growing concerns about user privacy and data security.
"One of the fundamental security principles that exists in the web, as well as the mobile system, is called sandboxing. What this attack vector allows is to break the sandbox that exists between the mobile context and the web context."
"Google says it's investigating the abuse, which allows Meta and Yandex to convert ephemeral web identifiers into persistent mobile app user identities."
Read at Ars Technica
[
|
]