<\/div>\n<\/div>\n
<\/span><\/p>\n
photo: AngieYeoh (Shutterstock)<\/figcaption><\/p>\n<\/div>\n<\/figure>\nIn-app browsers are bunk<\/span> compared to full-featured browsing apps, but they’re also a major privacy and security risk. Many apps sneak data trackers onto websites you visit through their in-app browser using a method called Javascript injection, which adds extra code to a page as it loads. These trackers can scoop up browsing history, login data, and even keyboard presses and text entry.<\/p>\nWhile not always used for nefarious means, Javascript injection is a potential security threat that, until now, was difficult to check for inside in-app browsers. Luckily, security researcher Flix Krause’s new ap(p)tly named tool, InAppBrowser<\/span>checks if an app’s built-in browser uses potentially dangerous Javascript injections to track your data.<\/p>\nWhile InAppBrowser only works in apps that have a built-in web browser tool, such as TikTok, Instagram, or Messenger, you can also use it on the desktop to check for Javascript injections from browser extensions.<\/p>\n