A recent security report titled 'BrowserGate' has revealed controversial tracking practices employed by the platform LinkedIn, owned by Microsoft, which raises concerns among users regarding their privacy.
The report indicates that LinkedIn utilizes hidden and complex JavaScript codes to conduct a comprehensive scan of visitors' browsers, aiming to identify installed extensions and collect detailed data about hardware specifications. Experts have described these practices as a blatant invasion of the privacy of professional users.
Details of the Findings
According to findings by cybersecurity researchers, the platform secretly examines over 6,100 extensions for Google Chrome and browsers built on the Chromium core. This process is not limited to determining whether a user employs an ad blocker, but also includes password management tools, digital wallet extensions, and professional data analysis tools. This provides the company with a panoramic view of the technical tools professionals use in their daily work.
The report clarified that LinkedIn collects approximately 48 technical data points from the user's device, including CPU specifications, core count, battery charge levels, device temperature, along with a list of installed fonts and screen resolution in pixels. This data is used to create a unique digital fingerprint for each user, allowing the platform to track them accurately.
Background & Context
Concerns about privacy are escalating in the digital age, as many companies adopt advanced technologies for data collection. Browser Fingerprinting is a technique used to identify and track users even if they clear cookies or use a VPN. These practices raise questions about how personal data can be protected in the absence of transparency.
The report noted that the code designed by LinkedIn employs a stealth scanning technique, where it scans extensions at very short intervals, making it invisible to traditional monitoring tools. This strategy ensures that the activity remains undetected by users, increasing the severity of the situation.
Impact & Consequences
The report has sparked a wave of criticism, especially as LinkedIn links this deep technical data to the user's real identity, employment history, and geographical location. Legal experts believe these practices could put Microsoft in direct conflict with strict data protection laws, such as the General Data Protection Regulation in the European Union, which prohibits data collection without explicit disclosure of its purpose.
So far, there has been no official comment from LinkedIn or Microsoft regarding the allegations in the BrowserGate report. However, many digital security experts have begun recommending the use of browsers that offer built-in protection against browser fingerprinting as a precautionary measure.
Regional Significance
The importance of data protection is increasing in the Arab world, where users face growing challenges in maintaining their privacy. These practices could affect users' trust in digital platforms, necessitating clear legislation for data protection in the region.
In conclusion, the BrowserGate report serves as a wake-up call regarding how companies handle user data, emphasizing the need for greater transparency and oversight in this field.