• perviouslyiner@lemmy.world
    link
    fedilink
    arrow-up
    8
    ·
    edit-2
    10 months ago

    So they mention that opening any websites in the app results in key-logging including any passwords or sensitive information that you enter into the other website:

    https://krausefx.com/blog/announcing-inappbrowsercom-see-what-javascript-commands-get-executed-in-an-in-app-browser

    TikTok claimed that the key logger was just an unused debugging feature, while Meta tried to justify it with some really weird doublespeak about ‘privacy’.

    Lemmy test: https://inappbrowser.com/

    • extant@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      10 months ago

      Was TikTok generating this information and sending it or just generating it and leaving it on the clients device? If it’s the latter than I buy the story, but if it was being sent it’s bullshit. Every bit of data costs money and for an individual user it’s fine but for an entire platform this would be measured in millions of dollars. There’s no way a company is going to accidentally be collecting all that expensive data just to ignore it.