Mastodon Feed: Post

Mastodon FeedJun 5, 2025, 8:58 PM

slightlyoff@toot.cafe ("Alex Russell") wrote:

The framing in this Ars post is disappointingly wrong; the flaw isn't (only) in browsers, it's in untrustworthy and unsafe native platforms that pervasively allow bad actors to set up insecure services on any device they can sucker users to installing apps into. This is a *native apps* bug, first and foremost:

https://arstechnica.com/security/2025/06/meta-and-yandex-are-de-anonymizing-android-users-web-browsing-identifiers/