LinkedIn's Secret Chrome Extension Scan Raises Privacy Concerns

/MEDIUM
SCW threat-intel
LinkedIn's Secret Chrome Extension Scan Raises Privacy Concerns

Recent investigations have revealed that LinkedIn is actively scanning usersโ€™ Chrome browsers for over 6,000 installed extensions. This data collection, conducted without explicit user consent for each scan, raises significant privacy questions. While LinkedIn states the purpose is to enhance user experience and security, the sheer volume of extensions monitored and the lack of transparency surrounding the process are cause for concern.

The practice involves LinkedInโ€™s browser extension, which appears to be the mechanism for this extensive surveillance. The data collected could potentially include information about usersโ€™ browsing habits across various websites, not just their activity on LinkedIn itself. This broad data aggregation, even if anonymized or intended for benign purposes, represents a substantial expansion of user profiling by a major social network.

What This Means For You

  • Security professionals should audit their organization's approved browser extensions and establish clear policies regarding the use of third-party extensions, especially those with broad data access permissions, to mitigate potential data leakage risks.

By Shimi's Cyber World Editorial

๐Ÿ”Ž
Stay ahead of this threat Search threats by organization, set watchlist alerts, or get a weekly SIEM digest with detection rules matched to your vendors โ€” inside Telegram.
Open Intel Bot โ†’