Ad Code

Popular Mac apps caught stealing and sharing users’ browser history

Popular Mac apps caught stealing and sharing users’ browser history
Popular Mac apps caught stealing and sharing users’ browser history
Popular Mac apps caught stealing and sharing users’ browser history
Popular Mac apps caught stealing and sharing users’ browser history
Popular Mac apps caught stealing and sharing users’ browser history
Popular Mac apps caught stealing and sharing users’ browser history
Popular Mac apps caught stealing and sharing users’ browser history

It’s emerged that a number of apps from the Mac App Store have been secretly gathering user data and uploading it to remote servers.

What’s particularly worrying is that these apps, which come from a developer that claims to be 'Trend Micro, Inc.', are very popular, often appearing high in the App Store’s free software charts.

Trend Micro, Inc is a well-known name in virus protection, so users could be forgiven for thinking that downloading an app from the company would be safe. We’re trying to contact the company to verify its origins.

The apps in question include Dr. Unarchiver and Dr. Cleaner, and were billed as apps that could help protect and clean up your Mac, or be used to open archived files.

Instead, it appears the apps, which are installed with access to the home directory on macOS, would gather data from the Mac as a zip file and upload it to the developer’s servers.

Sharing is uncaring

According to reports on the Malwarebytes forum, the apps collected browsing history from Safari, Chrome and Firefox web browsers, as well as information about which apps have been installed on the Mac. The user is not alerted to this data gathering.

The 9to5mac.com website, which has reported on the issue, tried out one of the apps, Dr. Unarchiver, and confirmed that it was indeed collecting data from the home directory of the Mac it was installed on.

On using the app, 9to5mac.com found it had created a zip file which, when opened, contained browser history, Google search information, and a “file containing a complete list of all apps installed on the system, including information about where they were downloaded from, whether they are 64-bit compatible and their code signature”.

At no point did the app ask permission or inform the user that it was collecting this data. What’s really worrying is that if these apps have access to the home directory they could potentially gather even more personal data without consent.

The apps have now been removed from the Mac App Store, but if you have previously installed these apps, you should uninstall them straight away. This revelation follows similar stories of Mac apps gathering data without permission, and could point to a worrying trend.

Macs have a reputation for having better security than Windows machines, mainly thanks to the Mac App Store, and Apple’s supposedly stringent rules for allowing apps to be included there. If more apps are found to be covertly gathering user data, however, this reputation could be at risk.



from TechRadar - Software news https://ift.tt/2CDfGFT

via Blogger https://ift.tt/2wY4H4T
September 10, 2018 at 02:42PM
via Blogger https://ift.tt/2wZLuyF
September 10, 2018 at 05:33PM
via Blogger https://ift.tt/2N0dQDP
September 10, 2018 at 08:33PM
via Blogger https://ift.tt/2QjWDmU
September 10, 2018 at 11:33PM
via Blogger https://ift.tt/2oWDYB6
September 11, 2018 at 02:33AM
via Blogger https://ift.tt/2x2j8ol
September 11, 2018 at 05:33AM
via Blogger https://ift.tt/2Mpl2o8
September 11, 2018 at 08:33AM

Post a Comment

0 Comments

Ad Code