Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Mobile & Wireless

Apple Pulls Data Snooping Apps From App Store

Apple Pulls Data Snooping Apps From Online Shop

Apple on Friday rid its App Store of some applications that it said could snoop on people’s data and posed a security threat.

Apple Pulls Data Snooping Apps From Online Shop

Apple on Friday rid its App Store of some applications that it said could snoop on people’s data and posed a security threat.

While Apple did not disclose which apps were pulled from its virtual shelves, the list was reported to include software capable of blocking ads from appearing inside other applications such as Facebook.

“We’ve removed a few apps from the App Store that install root certificates which enable the monitoring of customer network data that can in turn be used to compromise SSL/TLS security solutions,” Apple said in an email response to an AFP inquiry.

“We are working closely with these developers to quickly get their apps back on the App Store, while ensuring customer privacy and security is not at risk.”

The security concern centered on the ability of installed root certificates to route data in a way that allows for what is known in the hacker world as a “man-in-the-middle” attack. Data from mobile devices, even if it is encrypted, could be sent through an intermediary computer server and inspected.

Ads are a source of revenue for many apps, including Apple News. The California-based technology giant shares in revenue generated in any applications on its mobile devices.

The newest software powering Apple mobile devices allows apps that block ads from pages while surfing the Internet using Safari web browser but does not extend that capability into applications people use.

Advertisement. Scroll to continue reading.

While blocking ads promised to make surfing the Internet from iPhones or iPads faster and rein in telecom data use, it also sabotages what has long been the main way websites make money while providing free content or services.

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Artificial Intelligence

Two of humanity’s greatest drivers, greed and curiosity, will push AI development forward. Our only hope is that we can control it.

Mobile & Wireless

Infonetics Research has shared excerpts from its Mobile Device Security Client Software market size and forecasts report, which tracks enterprise and consumer security client...

Mobile & Wireless

Samsung smartphone users warned about CVE-2023-21492, an ASLR bypass vulnerability exploited in the wild, likely by a spyware vendor.

Malware & Threats

Apple’s cat-and-mouse struggles with zero-day exploits on its flagship iOS platform is showing no signs of slowing down.

Fraud & Identity Theft

A team of researchers has demonstrated a new attack method that affects iPhone owners who use Apple Pay and Visa payment cards. The vulnerabilities...

Mobile & Wireless

Critical security flaws expose Samsung’s Exynos modems to “Internet-to-baseband remote code execution” attacks with no user interaction. Project Zero says an attacker only needs...

Mobile & Wireless

Apple rolled out iOS 16.3 and macOS Ventura 13.2 to cover serious security vulnerabilities.

Cybersecurity Funding

Los Gatos, Calif-based data protection and privacy firm Titaniam has raised $6 million seed funding from Refinery Ventures, with participation from Fusion Fund, Shasta...