IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Developer tracks real-time locations of Facebook Messenger users

Harvard student labels app ‘Marauders Map’ as it tracks movements of social network users

Facebook keyboard

Facebook Messenger can track your location to within a metre, a developer has revealed after creating a program that allows others to pinpoint your whereabouts on a map.

Harvard computer science and mathematics student, Aran Khanna, has called his app Marauders Map after the Harry Potter books, as it allows people to discover the identity of Messenger app users, their location and previous movements.

The Chrome browser extension exploits the social network's default location settings on iOS and Android, which users must manually disable, and also uses GPS to place unsuspecting users on a map.

Writing on Medium, he said: "By simply looking at the cluster of messages sent late at night you can tell exactly where his [another user's] dorm is, and in fact approximately where his room is located in that dorm."

Looking into messages sent throughout the past few days, Khanna could build up a profile of other users' weekly schedules, predicting where one might be at any given time.

He could track the location of anyone he wasn't directly friends with too if they had sent messages to a group chat he was a member of.

He added: "Everyone I have shown this extension to has been anywhere from surprised to appalled that this much of their very personal data is online for their friends (and even complete strangers) to access.

"I decided to write this extension, because we are constantly being told how we are losing privacy with the increasing digitization of our lives, however the consequences never seem tangible.

"With this code you can see for yourself the potentially invasive usage of the information you share, and decide for yourself if this is something you should worry about."

At Facebook's request, he has now disabled the official version of the Chrome browser extension, but has left instructions on Github for other developers to run their own versions of the tool.

Featured Resources

Accelerating AI modernisation with data infrastructure

Generate business value from your AI initiatives

Free Download

Recommendations for managing AI risks

Integrate your external AI tool findings into your broader security programs

Free Download

Modernise your legacy databases in the cloud

An introduction to cloud databases

Free Download

The state of brand protection 2021

A new front opens up in the war for brand safety

Free download

Recommended

Meta hit with €17 million fine over multiple GDPR breaches
data protection

Meta hit with €17 million fine over multiple GDPR breaches

16 Mar 2022
Meta says Apple's iOS privacy changes will cost it $10 billion in 2022
privacy

Meta says Apple's iOS privacy changes will cost it $10 billion in 2022

3 Feb 2022
Google, Facebook fined €210 million for making it difficult for users to reject cookies
Policy & legislation

Google, Facebook fined €210 million for making it difficult for users to reject cookies

6 Jan 2022
Meta makes 2FA mandatory for high-risk users
two-factor authentication (2FA)

Meta makes 2FA mandatory for high-risk users

3 Dec 2021

Most Popular

How to boot Windows 11 in Safe Mode
Microsoft Windows

How to boot Windows 11 in Safe Mode

7 Jun 2022
The top programming languages you need to learn for 2022
Careers & training

The top programming languages you need to learn for 2022

23 Jun 2022
Attracting and retaining talent through training
Sponsored

Attracting and retaining talent through training

13 Jun 2022