The photo-sharing meta-image sharing platform allows Instagram to track its users’ activity, text choices and even text input, such as passwords and confidential credit card information, if they visit a link in the app, according to a new report.
The analysis conducted by Felix Krause found that Instagram and Facebook on iOS use their own in-app browsing, rather than the one provided by Apple for third-party apps.
Most apps use Apple’s Safari for loading websites, but Instagram and Facebook use their own in-app browsers to load websites within the app, according to the information. MacRumors.
This allows Instagram to monitor everything related to external websites without the consent of the user or the website provider, the report said.
The Instagram app injects its tracking code to all websites that are displayed, including reading ads, and they can monitor all user interactions, such as clicks and links that are clicked. , text selections, images, and various inputs, such as passwords, addresses, and credit card numbers.
Krause said it would take more effort for companies like Meta to develop and maintain their own browser-based apps, rather than using Apple’s built-in Safari.
On its developer portal, Meta says “Meta Pika” is designed to “monitor visitor activity on your website” by monitoring all the activities that the user does in their browser. There is no evidence that Meta, which owns Instagram, has been able to collect the user data it is capable of collecting.