Security News > 2022 > August > New tool checks if a mobile app's browser is a privacy risk
A new online tool named 'InAppBrowser' lets you analyze the behavior of in-app browsers embedded within mobile apps and determine if they inject privacy-threatening JavaScript into websites you visit.
The revelations shook the communities of popular apps that feature embedded browsers, so to help users determine the behavior of their app's activity, Krause released the 'InAppBrowser' online tool and open-sourced its source code.
To find if an app demonstrates potentially suspicious behavior, open the tool's website through the app's built-in browser.
For messenger apps, send the link to yourself via DM and open it through the app's browser.
"Just because an app injects JavaScript into external websites doesn't mean the app is doing anything malicious." clarifies the report.
The researcher specifically says the JavaScript code does not mean our app is doing anything malicious, and admits they have no way to know what kind of data our in-app browser collects.