Chinese Ad Company Sorry for Code to Snoop Apple User Data

20 Oct 2015 | Author: | No comments yet »

Apple bans hundreds of iPhone apps that secretly gathered personal info.

Apple is kicking out applications that collect personal data in violation of the company’s privacy policies from its online store, the tech giant said today.Apple has pulled several apps from its store, following security researchers’ findings that hundreds of iOS apps have been accessing users’ private data.

Apple pulled 256 apps from the App Store Monday that used hidden software to capture users email addresses, the apps they have previously downloaded, and the serial number of their smartphone. The iPhone maker made the announcement a day after researchers discovered hundreds of apps using Chinese advertising software that extracts “personally identifiable user information” Apple confirmed that discovery today. “We’ve identified a group of apps that are using a third-party advertising SDK (software development kit), developed by Youmi, a mobile advertising provider, that…gather private information, such as user email addresses and device identifiers, and route data to its company server,” the California-based company said in a statement to reporters. “This is a violation of our security and privacy guidelines. In a report published Sunday, researchers at security firm SourceDNA said they found 256 apps that were violating Apple’s security guidelines by using software that was able to collect users’ personal information, including their email and device identification numbers.

The issue was discovered by mobile security company SourceDNA, which claims the apps in question may have been downloaded over 1 million times in total. The apps’ creators used a software development kit from a Chinese advertising company called Youmi, which allowed the developers to put ads in their apps. SourceDNA notes that while the developers, who are primarily located in China, used the SDK, it’s likely they didn’t realize the data it was capturing. “We believe the developers of these apps aren’t aware of this since the SDK is delivered in binary form, obfuscated, and user info is uploaded to Youmi’s server, not the app’s.

Apple prohibits developers from using application program interfaces (APIs) that collect this type of private data, but researchers said Youmi appears to have begun slipping them into its software nearly two years ago, after its software made it through Apple’s initial review process. Apple said it is working with the app developers to update their apps, ensuring they are safe for customers and in compliance with the app store’s guidelines.

Here you can write a commentary on the recording "Chinese Ad Company Sorry for Code to Snoop Apple User Data".

* Required fields
All the reviews are moderated.
Our partners
Follow us
Contact us
Our contacts

ICQ: 423360519

About this site