If you use Instagram and Facebook apps for iOS, you should know that their in-app browser allows Meta to track ‘every tap’ you make on external websites.
Krause states that in-app browsers, no matter what company they come from, have a ton of privacy risks. This includes having companies collect browser analytics, copy-and-paste data, user credentials, etc. The researcher also mentions that while Instagram and Facebook do track data outside of those platform, they couldn’t prove exactly what data is being collected. Krause is also not accusing Meta of collecting data for nefarious purposes, but highlighting the fact that these types of code injections can be exploited to gain sensitive information.
The fact that the apps open their own browser also doesn’t mean that Facebook or Instagram can see everything you do online. If you want to protect yourself, consider opening links from the Meta-based companies using Safari’s browser instead. Since Safari blocks third party cookies by default, it might be a smarter privacy decision than using Meta’s browser outright.
Sign up to our mailing list to receive more IT related educational information: