It turns out the iPhone Application Steals User’s Data

Posted on by

Identification code that does not directly refer to the iPhone’s user, but you can use it as a ‘link’ to find it in your account up which then can lead you to even the original name of the user’s

The second warning for users of the iPhone, after complaints some people some time ago, the research found that it is true that a number of smart phone applications that have been stolen user data without you knowing.

A number of popular software application that stores a unique code that can be used to track users without being noticed.

Manuel Egele, a doctoral candidate at the Technical University of Vienna and three colleagues in a study that will be presented at the Network and Distributed System Security Symposium, February, explaining how more than 1,400 iPhone applications in data processing users.

According to their research, at least 36 percent of the applications turned out to access the iPhone device location without notifying the user, while five percent more even steal data from the phone book without permission.

More than half the studied iPhone application store that sophisticated device ID, which is 40 digits hexadecimal numbers used to identify a cell phone.

More than 750 applications were examined using multiple tracking technologies. In about 200 cases application developers to create a way to track the identification code with software that is often used by advertising companies.

“There is potential for companies that are not too tight in building their user profile,” said Egele quoted as saying by ‘Technology Review’.

“Identification code that does not directly refer to the user (iPhone), but you can use it as a ‘link’ to find it in your account up which then can lead you to even the original name of the user,” said Egele further.

Apple recently celebrated the downloading of the App Store, Apple’s application store, which to ten million, it was always require the application developer to request permission to users to access data before the install. However, only a few know how the company ensures each application doing it.

“You do not know what the applications, because they are developed by small developers,” said Charlie Miller, iPhone security expert and analyst at Independent Security Evaluators.

Four researchers in his research analyzed 825 applications available for free on the App Store and the Cydia reposit 582, a service that provides applications for those who have been through the process of ‘jailbreaking’, ie remove the security program from the Apple iPhone.

Egele and three colleagues were then identified this phenomenon as a violation of privacy because the application program that can read sensitive data such as phone numbers, phone book, and information from the iPhone email account and send the data without asking the user.

One more interesting from this study that the application is downloaded from the App Store is more likely to access the user data secretly ketimpang applications from Cydia.

Comments are closed.