Zuckercorp and Yandex used localhost loophole to tie browser data to app users, say boffins
Security researchers say Meta and Yandex used native Android apps to listen on localhost ports, allowing them to link web browsing data to user identities and bypass typical privacy protections.…
This article has been indexed from The Register – Security