The situation with the leakage of user data in iOS really sad
Makradar Technologies / / December 19, 2019
The Bitdefender company, engaged in the creation of anti-virus software, found that almost 19% iOS apps in the App Store have access to your address book without notice user. More sounds joyful news that 41% of applications to track the location and without notice or consent. And so we became quite fun, the Bitdefender reports that more than 40% of these applications are still not encrypt the information gathered.
As we know, iOS 6 should rectify this situation through the manual setting of access to applications of certain information and functionality, but so far it looks not good. In the analysis of more than 65 thousands of applications it revealed that 18.6% of them have access to contact information without the user's permission. In this case, the application does not inform the user of such actions.
Likewise behaves 41% of the applications in the collection of location information. Typically, the collected data is stored on the developer's servers, and only 57.5% of them encrypt stored information. In other words, if a computer villain hacker wants to gain access to such data, in 42.5% of cases it does not even have to spend time deciphering the information received.
Catalin Cosoi, Bitdefender Chief Researcher on security called such disturbing statistics:
We are concerned about lack of encryption of stored data and the prevalence of the collection of user location information. Without an explicit warning that the app does and what it has access to, control the leakage of user information is extremely difficult.
The mechanism developed by Apple for iOS 6 is designed to deal with such situations. When you first run the application operating system will prompt the user for permission for access to the application of certain information and functions. Unfortunately, even this tool does not solve the problem with data encryption, because the user can not know whether the encryption application developer uses the information collected. The only force that can change the situation is Apple itself. It will be sufficient to oblige developers to use encryption for the data collected and stored.
[via CultofMac]