This is not news at all, sadly. It’s been known and covered since at least 2013.
The only thing I wonder about is why people still get surprised about this. It’s facebook. It’s the company that’s tracking you on basically every website you visit. Even when you’re not logged in.
I think it’s wise to try to be aware of and not reinforce “facebook is creepy and everything they do is evil by default” bias. Any key presses, scrolling, or mouse movements on a website can be sent to the server. This is the nature of the browser. If you don’t want a website to have access to something, don’t type it into the website!
It’s the company that’s tracking you on basically every website you visit. Even when you’re not logged in.
Curious what you mean by this, the-kenny?
“Facebook shadow profile”
Shadow profiles, coupled with the ubiquitous ‘Like’ button.
Did I miss something in the gif? The quote says it sends back metadata, but the article says it contains the text of the post. I can’t see the text in the debugger though. What’s the actual content of the post?
I just tried this. It sends the full text.
The url it hits is /structured_suggestion, although I’m not able to get the server to respond with anything meaningful. If one is to discard the “facebook is creepy by default” bias, it seems reasonable to conclude that there’s some useful feature for suggestions based on your posts that can’t easily be implemented in the client (as URL and friend’s name recognition is).
At the time the quoted article was written it only sent back metadata, now it sends back the whole text.