VissJun 11, 2025

so this local mess thing is a pretty huge deal.

also, if youve ever wondered "how the fuck does instagram know this shit, are they listening to me?!"

well.. yes, they are (https://futurism.com/the-byte/facebook-partner-phones-listening-microphone)

but they, until the 3rd of this month, were playing hot potato with their tracking pixels that live on millions of sites, your browser, and fb/ig apps on your phone

https://localmess.github.io/
[edit] oops, had the wrong link for localmess writeup

In Leak, Facebook Partner Brags About Listening to Your Phone’s Microphone to Serve Ads for Stuff You Mention

One of Facebook's alleged marketing partners explained how it listens to users' smartphone microphones and advertises to them accordingly.

Futurism
Show threadVissJun 11, 2025

the tl:dr is basically this:

- fb/ig open local ports on your phone
- your mobile browser hits a site, and facebooks javascript sends cookie data to "localhost:<that port>", so now fb/ig have data on the site you just visited

incognito mode doesnt matter, cuz you just outed yourself to them.

vpns dont matter, because both actions are 'on your device', using local sockets.

you cant trust facebook.

Show threadVissJun 11, 2025
add graph.facebook.com to your firewall to prevent outbound traffic, or add it to your internal dns as 127.0.0.1.
Show threadPxl Phile
@Viss add *.facebook.com to your FW rules
Jun 12, 2025 at 5:32amWeb