What is LinkedIn BrowserGate?

LinkedIn runs a hidden JavaScript routine that fires 6,222 fetch requests per page load to detect which Chrome extensions a visitor has installed, without disclosing this in its privacy policy.

How does LinkedIn detect browser extensions?

LinkedIn's JS bundle tries to load known web-accessible resources from each extension ID via chrome-extension:// URLs. A successful response reveals the extension is installed.

Is LinkedIn BrowserGate illegal?

A criminal investigation has been opened in Germany. A U.S. privacy lawsuit is underway. LinkedIn calls it a security measure; critics call it undisclosed covert surveillance.

Does Firefox protect against extension fingerprinting?

Yes. Firefox randomizes extension UUIDs per browser session, making LinkedIn's detection method ineffective on Firefox-based browsers.

What data does LinkedIn collect beyond extension list?

48 hardware and software signals including screen resolution, GPU renderer, timezone, fonts, and device capabilities, compiled into a device fingerprint.

Is there a browser extension to block LinkedIn extension scanning?

BrowserGate Shield exists as a protest tool but using it may violate LinkedIn's ToS and risk account suspension. No legitimate privacy product addresses this yet.

What extensions does LinkedIn scan for?

The scan list of 6,222 IDs includes extensions related to sales automation, AI assistants, scraping tools, ad blockers, and many general productivity tools.

← Back to dashboard

clawsmith.com/signal/linkedin-browsergate-websites-secretly-fingerprint-extensions

⚠ IssueUnderservedLive

LinkedIn secretly scans every visitor's browser for 6000+ installed extensions without disclosure

LinkedIn deploys a 2.7MB JavaScript bundle that fires 6,222 fetch() calls per page load to detect which Chrome extensions a user has installed, then bundles the list with 48 hardware signals into a device fingerprint attached to every API request. Not disclosed in the privacy policy. Affects every LinkedIn visitor on Chrome. Criminal investigation opened in Germany.

Product Idea from this Signal

A browser extension that detects and blocks websites from scanning your installed extensions

4.1k ▲

Major websites like LinkedIn silently scan for thousands of installed browser extensions to build a unique fingerprint of each visitor, tracking them across sessions without cookies. Most privacy tools block canvas or WebGL fingerprinting but completely miss this extension-enumeration vector. This tool intercepts those probe requests in real time, alerts users which sites are scanning them, and optionally returns fabricated noise to defeat the fingerprint.

privacybrowser fingerprintingextension detectionanti-trackingLinkedInbrowser security

Competitive753 leadsView Opportunity →