this post was submitted on 03 Apr 2026
33 points (100.0% liked)

Privacy

9479 readers
407 users here now

A community for Lemmy users interested in privacy

Rules:

  1. Be civil
  2. No spam posting
  3. Keep posts on-topic
  4. No trolling

founded 2 years ago
MODERATORS
iopq@lemmy.world
33
BrowserGate: Technical breakdown of LinkedIn’s covert browser extension fingerprinting (the.unknown-universe.co.uk)
submitted 5 days ago* (last edited 4 days ago) by TheIPW@lemmy.ml to c/privacy@lemmy.world
11 comments fedilink hide all child comments
 

LinkedIn is using hidden JS to scan your browser for over 6,000 specific extension IDs via a known Chromium vulnerability. By inventorying your local software, they can infer highly sensitive "Special Category" data like health status, religion, and political advocacy without consent.

I’ve joined the dots on why Chromium-based "Shields" fail here and how to harden your home lab/network to stop the leak.

you are viewing a single comment's thread
view the rest of the comments
[–] gibmiser@lemmy.world 1 points 4 days ago (2 children)

Wonder how hard it would be to make a list of sensitive information employees based on the programs installed. I imagine pretty easy.

[–] zer0squar3d@lemmy.dbzer0.com 1 points 4 days ago

It only checks browser addons/extensions. The title isnt accurate.

[–] TheIPW@lemmy.ml 1 points 4 days ago

Spot on. If you can see a user has certain VPN clients, IDEs, or specific advocacy tools installed, you've essentially built a psychological profile of an employee’s home environment without them ever clicking 'Accept'. It’s a massive GDPR Article 9 violation (Special Category data) hidden in plain sight.