Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Mobile & Wireless

Apple Pulls Data Snooping Apps From App Store

Apple Pulls Data Snooping Apps From Online Shop

Apple on Friday rid its App Store of some applications that it said could snoop on people’s data and posed a security threat.

Apple Pulls Data Snooping Apps From Online Shop

Apple on Friday rid its App Store of some applications that it said could snoop on people’s data and posed a security threat.

While Apple did not disclose which apps were pulled from its virtual shelves, the list was reported to include software capable of blocking ads from appearing inside other applications such as Facebook.

“We’ve removed a few apps from the App Store that install root certificates which enable the monitoring of customer network data that can in turn be used to compromise SSL/TLS security solutions,” Apple said in an email response to an AFP inquiry.

“We are working closely with these developers to quickly get their apps back on the App Store, while ensuring customer privacy and security is not at risk.”

The security concern centered on the ability of installed root certificates to route data in a way that allows for what is known in the hacker world as a “man-in-the-middle” attack. Data from mobile devices, even if it is encrypted, could be sent through an intermediary computer server and inspected.

Ads are a source of revenue for many apps, including Apple News. The California-based technology giant shares in revenue generated in any applications on its mobile devices.

Advertisement. Scroll to continue reading.

The newest software powering Apple mobile devices allows apps that block ads from pages while surfing the Internet using Safari web browser but does not extend that capability into applications people use.

While blocking ads promised to make surfing the Internet from iPhones or iPads faster and rein in telecom data use, it also sabotages what has long been the main way websites make money while providing free content or services.

Written By

AFP 2023

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.

Register

Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.

Register

Expert Insights

Related Content

Mobile & Wireless

Infonetics Research has shared excerpts from its Mobile Device Security Client Software market size and forecasts report, which tracks enterprise and consumer security client...

Mobile & Wireless

Apple rolled out iOS 16.3 and macOS Ventura 13.2 to cover serious security vulnerabilities.

Cybersecurity Funding

Los Gatos, Calif-based data protection and privacy firm Titaniam has raised $6 million seed funding from Refinery Ventures, with participation from Fusion Fund, Shasta...

Mobile & Wireless

Critical security flaws expose Samsung’s Exynos modems to “Internet-to-baseband remote code execution” attacks with no user interaction. Project Zero says an attacker only needs...

Privacy

Many in the United States see TikTok, the highly popular video-sharing app owned by Beijing-based ByteDance, as a threat to national security.The following is...

Artificial Intelligence

Two of humanity’s greatest drivers, greed and curiosity, will push AI development forward. Our only hope is that we can control it.

Mobile & Wireless

Technical details published for an Arm Mali GPU flaw leading to arbitrary kernel code execution and root on Pixel 6.

Mobile & Wireless

Two vulnerabilities in Samsung’s Galaxy Store that could be exploited to install applications or execute JavaScript code by launching a web page.