- How to stream Steelers vs. 49ers in NFL Week 3 action 7 Months Ago
- How to stream Bills vs. Bengals in NFL Week 3 action 7 Months Ago
- Colt halts production of AR-15s for civilians Today 3:45 PM
- If you love long-winded, hashtag-heavy Instagram captions, these apps can help Today 2:54 PM
- Teen girls on TikTok have convinced the internet that they eat their tampons Today 2:33 PM
- Twitch streamer faces criticism for trying to defend racist jokes Today 2:03 PM
- How to stream Raiders vs. Vikings in Week 3 Today 12:55 PM
- NRA calls Beto O’Rourke ‘AR-15 salesman of the month’ in wake of buyback proposal Today 12:03 PM
- After 23 deaths, Sean Bean is tired of getting killed on-screen Today 11:48 AM
- Stephen Miller has a girlfriend—and people are stunned Today 11:35 AM
- Mickey Rourke says Robert De Niro iced him out of ‘The Irishman’ Today 11:07 AM
- Conservative men are melting down over Elizabeth Warren’s speech Today 10:40 AM
- People are calling rapper Tekashi 69 a ‘snitch’ for outing gang members Today 10:16 AM
- Greta Thunberg tells Congress to ‘listen to the scientists’ about climate crisis Today 9:55 AM
- Maybe we should start taking Tom DeLonge seriously about UFOs Today 9:11 AM
Several popular iPhone apps have been caught recording users’ screens despite never asking for permission, TechCrunch reports.
Companies including Abercrombie & Fitch, Air Canada, Expedia, Hollister, Hotels.com, and Singapore Airlines were found to be gathering screen data while never mentioning the capability in their privacy policies.
Some of the apps were even collecting and inadvertently exposing sensitive customer information in the process, such as data regarding passports, credit cards, and even passwords.
According to TechCrunch’s Zack Whittaker, many of the apps rely on Glassbox, a customer service analytics company. Glassbox utilizes “session replay” technology, which lets app developers record and play back screen activity for troubleshooting purposes.
A mobile device expert known as the App Analyst explained how data captured by the apps often failed to conceal private information. In the case of Air Canada, the expert found the app wasn’t masking replays from users’ screens.
“This gives Air Canada employees—and anyone else capable of accessing the screenshot database—to see unencrypted credit card and password information,” the App Analyst said told TechCrunch.
After examining the apps that relied on Glassbox, the mobile expert warned of the potential for similar data exposure.
“Since this data is often sent back to Glassbox servers I wouldn’t be shocked if they have already had instances of them capturing sensitive banking information and passwords,” the App Analyst added.
When asked by TechCrunch why their privacy policies failed to mention the screen-grabbing feature, each company responded with vague answers. The App Analyst argues that users can’t make decisions about their data if they aren’t properly informed.
- The best free password managers
- What’s the most secure operating system?
- How to encrypt an iPhone in seconds
Mikael Thalen is a tech and security reporter based in Seattle, covering social media, data breaches, hackers, and more.