Developer tracks real-time locations of Facebook Messenger users
Harvard student labels app ‘Marauders Map’ as it tracks movements of social network users

Facebook Messenger can track your location to within a metre, a developer has revealed after creating a program that allows others to pinpoint your whereabouts on a map.
Harvard computer science and mathematics student, Aran Khanna, has called his app Marauders Map after the Harry Potter books, as it allows people to discover the identity of Messenger app users, their location and previous movements.
The Chrome browser extension exploits the social network's default location settings on iOS and Android, which users must manually disable, and also uses GPS to place unsuspecting users on a map.
Writing on Medium, he said: "By simply looking at the cluster of messages sent late at night you can tell exactly where his [another user's] dorm is, and in fact approximately where his room is located in that dorm."
Looking into messages sent throughout the past few days, Khanna could build up a profile of other users' weekly schedules, predicting where one might be at any given time.
He could track the location of anyone he wasn't directly friends with too if they had sent messages to a group chat he was a member of.
He added: "Everyone I have shown this extension to has been anywhere from surprised to appalled that this much of their very personal data is online for their friends (and even complete strangers) to access.
Get the ITPro daily newsletter
Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ senior executives
"I decided to write this extension, because we are constantly being told how we are losing privacy with the increasing digitization of our lives, however the consequences never seem tangible.
"With this code you can see for yourself the potentially invasive usage of the information you share, and decide for yourself if this is something you should worry about."
At Facebook's request, he has now disabled the official version of the Chrome browser extension, but has left instructions on Github for other developers to run their own versions of the tool.
-
M&S suspends online sales as 'cyber incident' continues
News Marks & Spencer (M&S) has informed customers that all online and app sales have been suspended as the high street retailer battles a ‘cyber incident’.
By Ross Kelly
-
Manners cost nothing, unless you’re using ChatGPT
Opinion Polite users are costing OpenAI millions of dollars each year – but Ps and Qs are a small dent in what ChatGPT could cost the planet
By Ross Kelly
-
UK businesses patchy at complying with data privacy rules
News Companies need clear and well-defined data privacy strategies
By Emma Woollacott
-
Data privacy professionals are severely underfunded – and it’s only going to get worse
News European data privacy professionals say they're short of cash, short of skilled staff, and stressed
By Emma Woollacott
-
Four years on, how's UK GDPR holding up?
News While some SMBs are struggling, most have stepped up to the mark in terms of data governance policies
By Emma Woollacott
-
Multicloud data protection and recovery
whitepaper Data is the lifeblood of every modern business, but what happens when your data is gone?
By ITPro
-
Intelligent data security and management
whitepaper What will you do when ransomware hits you?
By ITPro
-
How to extend zero trust to your cloud workloads
Whitepaper Implement zero trust-based security across your entire ecosystem
By ITPro
-
The threat prevention buyer's guide
Whitepaper Find the best advanced and file-based threat protection solution for you
By ITPro
-
Why The Matrix offers valuable lessons on data sovereignty for channel partners
Industry Insights Two decades on, there's much that the Matrix series can teach channel partners about data sovereignty
By David Devine