58
submitted 7 months ago by tree@lemmy.ml to c/technology@hexbear.net

cross-posted from: https://lemmy.world/post/13594650

Meta tried to gain a competitive advantage over its competitors, including Snapchat and later Amazon and YouTube, by analyzing the network traffic of how its users were interacting with Meta’s competitors. Given these apps’ use of encryption, Facebook needed to develop special technology to get around it.

Facebook’s engineers solution was to use Onavo, a VPN-like service that Facebook acquired in 2013. In 2019, Facebook shut down Onavo after a TechCrunch investigation revealed that Facebook had been secretly paying teenagers to use Onavo so the company could access all of their web activity.

After Zuckerberg’s email, the Onavo team took on the project and a month later proposed a solution: so-called kits that can be installed on iOS and Android that intercept traffic for specific subdomains, “allowing us to read what would otherwise be encrypted traffic so we can measure in-app usage,” read an email from July 2016. “This is a ‘man-in-the-middle’ approach.”

A man-in-the-middle attack — nowadays also called adversary-in-the-middle — is an attack where hackers intercept internet traffic flowing from one device to another over a network. When the network traffic is unencrypted, this type of attack allows the hackers to read the data inside, such as usernames, passwords, and other in-app activity.

top 4 comments
sorted by: hot top controversial new old
[-] What_Religion_R_They@hexbear.net 13 points 7 months ago

I support banning all Facebook apps

[-] bigboopballs@hexbear.net 4 points 7 months ago

break 'em all up, decentralize them and make them run by the workers' state

[-] JoeByeThen@hexbear.net 9 points 7 months ago

Can't do man-in-the-middle anymore because of woke.

sicko-wistful

[-] chickentendrils@hexbear.net 7 points 7 months ago

Still controversies popping up over that stupid program? I think they also managed to piss off Apple with another one where they were enrolling iOS devices in an Enterprise MDM platform so they could push policies/apps to those users. Though now iOS has (EU only?) side-loading or at least other app stores I think.

this post was submitted on 27 Mar 2024
58 points (100.0% liked)

technology

23306 readers
293 users here now

On the road to fully automated luxury gay space communism.

Spreading Linux propaganda since 2020

Rules:

founded 4 years ago
MODERATORS