Paco Hope17h ago

Holy shit this is detailed. Can you believe the hubris to silently collect all this information on users?

#privacy

https://browsergate.eu/how-it-works/

The Attack: How it works

Every time you open LinkedIn in a Chrome-based browser, LinkedIn’s JavaScript executes a silent scan of your installed browser extensions. The scan probes for thousands of specific extensions by ID, collects the results, encrypts them, and transmits them to LinkedIn’s servers. The entire process happens in the background. There is no consent dialog, no notification, no mention of it in LinkedIn’s privacy policy. This page documents exactly how the system works, with line references and code excerpts from LinkedIn’s production JavaScript bundle.

BrowserGate
Show threadMensch, Marina
@paco But this cannot be legal in Europe/EU!
9:47pmWeb
Show threadPaco Hope15h ago
@energisch_ I’m not a lawyer or European. But that blog makes a very strong argument that you’re right: it sure seems illegal by EU law.
Show threadjomo2h ago
@paco
@energisch_ but nobody will be held accountable for it, nobody will lose any of their own personal money, nobody will go to jail. They know this is illegal but they don't care. The company will pay the lawsuit and fine with their spare pocket money. They've earned more with it than the fine is going to be. Breaking the law is just a price tag to them.
Show threadMensch, Marina2h ago
@jomo @paco we need to make it expensive and unprofitable to break data protection laws
Show threadU.Lancier1h ago

@energisch_ @paco it clearly is not only not legal, but explicitly illegal under European Law.

I am sure there will be a lawsuit if not already brought to court.