Security Experts:

Connect with us

Hi, what are you looking for?


Mobile & Wireless

Apple Yanks Privacy App From The App Store

Apple Pulls Bitdefender’s ‘Clueful’ Privacy App From The App Store

Apple Pulls Bitdefender’s ‘Clueful’ Privacy App From The App Store

Back in May of this year, Internet security firm Bitdefender launched an App and service designed to help iOS users get a grip on what the apps installed on their mobile devices may be up to.

Apple Removes Clueful App From AppStoreDubbed “Clueful” by Bucharest, Romania-based Bitdefender, the App tells owners of iOS devices which applications may be accessing more information than they need, and identifies potentially “misbehaving” apps, giving users an inside look at all the information app developers can gather about a user. In simple terms, Clueful identifies potentially intrusive applications and shows users what they do behind their back.

Seems legit, right? Apple doesn’t think so. Or at least they have an issue with something behind the App that sparked them to pull it from the App Store. 

After initially reviewing and approving the App that was released on May 22, and has been available in the App store for months, Apple has had a change of heart and has removed the App from the AppStore.

“Apple informed Bitdefender’s product development team of the removal — for reasons the company is studying — after initial approval and sale in the App Store,” the company said in a statement Wednesday.

So why would Apple pull such an App from the App store? It’s unclear, and Bitdefender told SecurityWeek that the company is under NDA as far as explanations for the removal.

“App developers can ask for, and receive, access to your precise location, your contact list and more information about you when you install their products on your iPhone,” Catalin Cosoi, chief security researcher at Bitdefender said in a statement when the App was originally released. “Your iPhone is probably the most personal device you own, holding vast amounts of information about what you do, who you are and where you go.”

“While most app developers use this information for legitimate purposes, others might not,” Cosoi said. “Clueful was the best way for iPhone owners to know what data apps are actually accessing.”

The app was actually removed from the App store on June 28th, after Apple called and let Bitdefender know they were in the process of removing the App from the App Store.

It’s unclear why Apple would remove such an app from the App store, but perhaps the tech titan didn’t like the fact that the folks at Bitdefender were coughing up details on thousands of iOS apps and potentially scaring users away from purchasing Apps and dipping into sales. But that seems a bit far-fetched, as given Apple’s massive revenues, any App of the sort is not likely to materially affect sales of other apps. Perhaps Apple was able to call-out the company on a technicality that violates its terms of service. We don’t know.

SecurityWeek has reached out to Apple for comment, but we’re not holding our breath, as the tight-lipped company rarely responds to media inquiries.

Interestingly, Bitdefender did share some data that they gathered based on Clueful’s analysis of more than 65,000 popular iOS apps so far:

• 42.5 percent of apps do not encrypt users’ personal data, even when accessed via public Wi-Fi

• 41.4 percent of apps were shown to track a user’s location unbeknownst to them

• Almost one in five of the apps analyzed can access a user’s entire Address Book, with some even sending user information to the cloud without notification

“iPhone owners need to know which apps they have installed may be using their personal data in ways that are not expected,” the company said. “The Clueful team is committed to raising awareness about app privacy on the iOS platform and will continue to develop Clueful for resubmission.”

“While Clueful remains off the App Store, we are working toward building data privacy awareness and will continue to develop products that help consumers remain secure regardless of platform,” Cosoi said.

Users who have already downloaded Clueful may continue to use it.

You May Like: Apple to Discuss iOS Security at Black Hat 2012

  Secunia Slams Apple Over Vulnerability Handling, Publicizes Safari Flaws

  Apple to Include Auto-Updates in Mac OS X Mountain Lion

Written By

For more than 10 years, Mike Lennon has been closely monitoring the threat landscape and analyzing trends in the National Security and enterprise cybersecurity space. In his role at SecurityWeek, he oversees the editorial direction of the publication and is the Director of several leading security industry conferences around the world.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn best practices that organizations can use to improve both their resilience to new threats and their response times to incidents.


Join this live webinar as we explore the potential security threats that can arise when third parties are granted access to a sensitive data or systems.


Expert Insights

Related Content

Mobile & Wireless

Infonetics Research has shared excerpts from its Mobile Device Security Client Software market size and forecasts report, which tracks enterprise and consumer security client...

Mobile & Wireless

Apple rolled out iOS 16.3 and macOS Ventura 13.2 to cover serious security vulnerabilities.

Mobile & Wireless

Technical details published for an Arm Mali GPU flaw leading to arbitrary kernel code execution and root on Pixel 6.


Many in the United States see TikTok, the highly popular video-sharing app owned by Beijing-based ByteDance, as a threat to national security.The following is...

Cybersecurity Funding

Los Gatos, Calif-based data protection and privacy firm Titaniam has raised $6 million seed funding from Refinery Ventures, with participation from Fusion Fund, Shasta...

Mobile & Wireless

Apple’s iOS 12.5.7 update patches CVE-2022-42856, an actively exploited vulnerability, in old iPhones and iPads.

Mobile & Wireless

The February 2023 security updates for Android patch 40 vulnerabilities, including multiple high-severity escalation of privilege bugs.

Mobile & Wireless

Two vulnerabilities in Samsung’s Galaxy Store that could be exploited to install applications or execute JavaScript code by launching a web page.