Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
Google Android Privacy

Google Bans Apps With Hidden Data-Harvesting Software (wsj.com) 28

Google has yanked dozens of apps from its Google Play store after determining that they include a software element that surreptitiously harvests data. From a report: The Panamanian company that wrote the code, Measurement Systems S. de R.L., is linked through corporate records and web registrations to a Virginia defense contractor that does cyberintelligence, network-defense and intelligence-intercept work for U.S. national-security agencies. The code ran on millions of Android devices and has been found inside several Muslim prayer apps that have been downloaded more than 10 million times, as well as a highway-speed-trap detection app, a QR-code reading app and a number of other popular consumer apps, according to two researchers who discovered the behavior of the code in the course of auditing work they do searching for vulnerabilities in Android apps. They shared their findings with Google, a unit of Alphabet, federal privacy regulators and The Wall Street Journal.
This discussion has been archived. No new comments can be posted.

Google Bans Apps With Hidden Data-Harvesting Software

Comments Filter:
  • Only dozens? (Score:5, Interesting)

    by DarkRookie2 ( 5551422 ) on Wednesday April 06, 2022 @01:49PM (#62422930)
    I pretty sure 99.999% of all the app on the Google Play Store are filled with hidden data harvesting. With Google being the biggest offender.
  • by account_deleted ( 4530225 ) on Wednesday April 06, 2022 @01:49PM (#62422932)
    Comment removed based on user account deletion
  • I thought the WSJ welcomed authoritarianism.
  • LOL (Score:2, Insightful)

    by Anonymous Coward

    Because thats googles game, and only they are allowed to play it

  • Use DuckDuckGo (Score:4, Interesting)

    by Klaxton ( 609696 ) on Wednesday April 06, 2022 @02:03PM (#62422972)

    I have an Android phone and I recently installed the DuckDuckGo app. There is a "global privacy control" option in the settings that will prevent apps from constantly phoning home with data about your location and usage. It reports the tracking attempts too, I was shocked at the number of blocked attempts on apps that I regularly use. So I strongly recommend, it is a beta feature and you may be put on a waiting list but it is worth the trouble.

    • by Paxtez ( 948813 )

      I'm surprised that is even allowed. Normally Google/Apple isn't cool with messing with/monitoring the traffic of other apps.

      Does it act as a pseudo VPN or something?

      • by Klaxton ( 609696 )

        It is a VPN and there's a little key symbol in the upper-right that indicates it is running. You can see a daily per-app report on all the tracking attempts, what info they are trying to share, and what data collection companies they are selling it to. Really pretty amazing how much they are trying to export and to where.

    • I keep location data turned off, unless I REALLY need it, then turn it off again immediately after. On my new Samsung A13 (Android 11), it is right on the top level of "Settings". I also leave all of the "Connections" radios shut off, again unless I really need them. The annoying one is that SMS multimedia no longer propagates through WiFi, but requires mobile data access. That is different from my earlier 4.4 phone.

      I will keep an eye out for the DDG app. I wonder, though, about its actual access to to

  • by account_deleted ( 4530225 ) on Wednesday April 06, 2022 @02:16PM (#62422994)
    Comment removed based on user account deletion
  • by blahplusplus ( 757119 ) on Wednesday April 06, 2022 @02:23PM (#62423012)

    ... harvesting apps pointlessly.

    The reality is if you are on the internet and using any web/client server software with a sign or using an android/iphone you long ago gave up any pretense you cared about privacy.

    The only way to have privacy is to have local apps that don't communicate to the mothership and the industry has been hell bent on killing local applications and taking us to mainframe dumb client model of computing and turning the PC into a console with the rise of TPM requirement in windows 11 which allows Microsoft and tech companies to remotely brick your software and engage in artifical obsolescence.

    They're still hell bent on killing piracy if you think the media and content industries are giving up their desire for monopoly profits and to engage in file extortion you're out of your mind.

    They've known since 1997 with the rise of mmo's (aka RPG's with stolen networking code) that the average PC user/gamer is a moron. Like they are going to stop.

    When iphone was introduced in roughly 2007, there had already had been a decade of attack on software ownership on the PC so iphone was specifically constructe to remote control of the device from the customer and give it to the company. That is what everyone in the tech industry is moving us towards - dumb consumer devices we don't control and harvest our data.

    So the idea that google is "helping" anyone when there business model is built around spying on everyone and harvesting everything is hilarious enough.

  • by echo123 ( 1266692 ) on Wednesday April 06, 2022 @02:28PM (#62423030)
    The Muslim prayer app galls me. On one hand, it is total common sense to use an application like that because otherwise trying to track prayer times given where one might be in the world is crazy, (at least to me, as a non-Muslim with deep respect for those people), on the other hand 'apps' like this take advantage of simple, honest, trusting users. Malware to the extreme.

    https://arstechnica.com/tech-p... [arstechnica.com]

    https://www.thisamericanlife.o... [thisamericanlife.org]
  • You have to fill out pages and pages of forms to get an app in the store, but Google couldn't be bothered to check if apps were uploading data ?

    Google is broken.
  • by NotEmmanuelGoldstein ( 6423622 ) on Wednesday April 06, 2022 @08:13PM (#62424072)

    ... millions of Android devices ...

    I'm seeing old applets disappearing from Goolge play. What remains are applets needing network connections to download adverts, to store your history/work in the cloud, to normalize the idea that users don't control their data or their device.

    Google Drive and DropBox exist so that applets don't have to access the network themselves. There's few applets that dont' use the network but it's on the user to avoid applets that access Contacts data but don't provide communication, access Phone Identity but don't provide personal service, and to avoid network-dependent applets as much as possible. Google normalizes the need for network-dependent applets and ignorant users enable the popularity of spyware.

    • The user wants to download Happy Candy Fluffy Bunny, or else the kid will go waaa.

        The user does not know why Happy Candy Fluffy Bunny needs access to phone contacts, or the huge list of other things that Happy Candy Fluffy Bunny should not need, but the kid will go waaa so the user downloads the malware and clicks through the big permissions list box without understanding or even reading it.

  • Cannot allow potential competition on data harvesting, best squash it before too long.

  • Except they do jack shit in actually checking those apps for malware as the recurring stories of mass pwnage with a huge laundry list of bad apps from the Play Store indicates.

      Lots of gum flapping but nothing to back it up.

Technology is dominated by those who manage what they do not understand.

Working...