Click to Skip Ad
Closing in...
  1. AirPods 2 Price
    11:46 Deals

    Amazon’s AirPods 2 price is the lowest it’s been all year, but not for much lo…

  2. Best Robot Vacuum Deals
    13:00 Deals

    Amazon’s best Roomba vacuum deal is the Roomba 675 for $199

  3. Best Camera Drone Under $100
    08:43 Deals

    Best camera drone under $100 gets a rare extra discount at Amazon

  4. Best Car Detailing Products
    14:14 Deals

    The best car detailing product is a $5.59 tool on Amazon that pros don’t want you to…

  5. Top Amazon Deals
    08:06 Deals

    10 top Amazon deals you can only get if you have Prime

Hundreds of iOS apps in the Chinese market found to be stealing private user data

October 19th, 2015 at 7:40 PM
iOS App Store Apps Private Data Collection

Right on the heels of a major malware attack on the App Store, mobile analytics service SourceDNA discovered another potential security breach in the form of private APIs being used in hundreds of apps which bypassed Apple’s app review process to collect private user data without the user’s permission.

READ MORE: Adobe confirms major Flash vulnerability, and the only way to protect yourself is to uninstall Flash

Before you scramble to delete every app on your iPhone or iPad, SourceDNA says that a vast majority of the apps appear to be from Chinese developers. After examining the advertising SDK contained within the affected apps, SourceDNA realized that all of the code was coming from the same company: Chinese advertiser Youmi.

During the course of testing, SourceDNA found 256 apps with more than 1 million downloads on the App Store containing a privacy-violating version of Youmi’s software. Thankfully, Apple has already taken action, but the analytics company is concerned that other developers might be using similar tactics that have not yet been discovered.

Apple issued the following statement shortly after the private APIs were discovered:

“We’ve identified a group of apps that are using a third-party advertising SDK, developed by Youmi, a mobile advertising provider, that uses private APIs to gather private information, such as user email addresses and device identifiers, and route data to its company server. This is a violation of our security and privacy guidelines. The apps using Youmi’s SDK have been removed from the App Store and any new apps submitted to the App Store using this SDK will be rejected. We are working closely with developers to help them get updated versions of their apps that are safe for customers and in compliance with our guidelines back in the App Store quickly.”

Jacob started covering video games and technology in college as a hobby, but it quickly became clear to him that this was what he wanted to do for a living. He currently resides in New York writing for BGR. His previously published work can be found on TechHive, VentureBeat and Game Rant.

Popular News