Apple removing hundreds of apps from App Store that collected private user data

iPhone 6S

Apple has confirmed that there were hundreds of apps in its App Store that had somehow bypassed its app review process and had been secretly collecting private user data and uploading it to its own server.

Researchers from code analytics platform SourceDNA over the weekend published that it had found at least 256 apps within the App Store that included code for private API calls, which breaches Apple's App Review Guidelines.

The API calls, which was used to collect private user info, such as email addresses used for your Apple ID, as well as device identifiers and a list of your installed apps, were found to be a part of an SDK from Chinese advertising company Youmi, and the data collected was being uploaded to Youmi's server without the developer or user knowing.

According to the researchers, the code was likely included in the apps without the app developer knowing as the SDK was in binary code.

In response, Apple sent out a statement saying, "We've identified a group of apps that are using a third-party advertising SDK, developed by Youmi, a mobile advertising provider, that uses private APIs to gather private information, such as user email addresses and device identifiers, and route data to its company server."

"This is a violation of our security and privacy guidelines," Apple said, adding that all apps using the Youmi SDK will be removed from it's App Store and any new apps that use the SDK will also be rejected.

"We are working closely with developers to help them get updated versions of their apps that are safe for customers and in compliance with our guidelines back in the App Store quickly," Apple said.

But while Apple has been quick to remove the apps containing the SDK from Youmi, researchers from SourceDNA are concerned that other published apps could contain similar APIs that are also hidden that have also somehow bypassed Apple's app review process.

Unfortunately, a full list of effected apps have not been published or revealed, but it is expected that most of the apps were developed in China and targeted to Chinese users.

Via 9to5Mac

TOPICS
Latest in Websites & Apps
Quordle on a smartphone held in a hand
Quordle hints and answers for Thursday, March 13 (game #1144)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Thursday, March 13 (game #375)
Quordle on a smartphone held in a hand
Quordle hints and answers for Wednesday, March 12 (game #1143)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Wednesday, March 12 (game #374)
Twitter social media application change logo to X. Elon Musk CEO of twitter rebranded Twitter to 'X'. Social media application technology concept.
X is back – here's what we know about the 'massive cyberattack' that caused Twitter to go down multiple times
Quordle on a smartphone held in a hand
Quordle hints and answers for Tuesday, March 11 (game #1142)
Latest in News
UK Prime Minister Sir Kier Starmer
UK PM says AI should soon replace civil servants
Eight Samsung TVs mounted to the wall showing different basketball games
Samsung is offering you 8 new TVs in one bundle for March Madness, in case you want to watch all games at once like a Bond villain’s lair
The Steam Logo on a mobile phone in front of a wall of games.
Today’s Steam Spring Sale features my absolute favorite game of all time - here's when the sale starts and all the key info
Apple iPhone 16 Pro Max REVIEW
The latest iPhone 17 Pro Max leak may have given us another look at its upcoming redesign
Half-Life running on a smartwatch
This Redditor installed a game engine on their smartwatch, and now it runs Doom, Quake, and Half-Life
Samsung Galaxy Z Fold 6
The Samsung Galaxy Z Fold 7 could be in line for a Galaxy S25 Ultra-level camera upgrade