Privacy Browser Android

GPS location information requires the addition of the location dangerous permissions

https://developer.android.com/guide/topics/permissions/overview#dangerous_permissions

https://developer.android.com/reference/android/Manifest.permission#ACCESS_COARSE_LOCATION

https://developer.android.com/reference/android/Manifest.permission#ACCESS_FINE_LOCATION

From time to time there are vulnerabilities in WebView.

https://labs.mwrinfosecurity.com/blog/webview-addjavascriptinterface-remote-code-execution/

My guess is that there are a lot of unpatched 0-day vulnerabilities in WebView being actively exploited in the wild. Once the dangerous location permissions are granted to the app, any website that can exploit a WebView vulnerability would be able to track your location, regardless of whether the app enabled or disabled the setting. For that reason I never intend to add the location permissions.

PS. This is somewhat related to how the NSA uses 0-day exploits in Firefox to track people using Tor.

https://www.schneier.com/blog/archives/2013/10/how_the_nsa_att.html

Thanks for the detailed reply!