- Report: 5,000 Twitter bots pushed ‘Russiagate hoax’ out after Mueller Report Today 11:15 AM
- Google Trends show how differently Notre Dame and Sri Lanka are being mourned Today 10:50 AM
- Harvard centrists get relentlessly clowned for asking Bernie about socialism Today 10:38 AM
- Facebook’s new general counsel helped craft the ‘Patriot Act’ Today 10:26 AM
- Get a free month of live TV streaming while this Philo deal lasts Today 10:11 AM
- Netflix announces teen lesbian rom-com Today 10:00 AM
- Which direwolves are left in ‘Game of Thrones’? Today 9:24 AM
- 15 Cards Against Humanity expansions that everyone should own Today 9:23 AM
- ‘Avengers: Endgame’ premiere brings no spoilers, but plenty of emotion Today 9:03 AM
- Kamala Harris calls on House to begin impeachment proceeding against Trump Today 8:46 AM
- Twitch kills ‘Joy of Sex’ category—and gamers are furious Today 8:19 AM
- The best Mother’s Day gifts and gadgets for high-tech moms Today 7:30 AM
- Netflix’s ‘Music Teacher’ is another lifeless melodrama about an emotionally illiterate man Today 6:45 AM
- 3 things we saw at the ‘Avengers: Endgame’ premiere Today 6:30 AM
- How to use Google Home Hub as a digital photo frame Today 6:00 AM
William Hook/Flickr (CC-BY-SA)
Several popular iPhone apps have been caught recording users’ screens despite never asking for permission, TechCrunch reports.
Companies including Abercrombie & Fitch, Air Canada, Expedia, Hollister, Hotels.com, and Singapore Airlines were found to be gathering screen data while never mentioning the capability in their privacy policies.
Some of the apps were even collecting and inadvertently exposing sensitive customer information in the process, such as data regarding passports, credit cards, and even passwords.
According to TechCrunch’s Zack Whittaker, many of the apps rely on Glassbox, a customer service analytics company. Glassbox utilizes “session replay” technology, which lets app developers record and play back screen activity for troubleshooting purposes.
A mobile device expert known as the App Analyst explained how data captured by the apps often failed to conceal private information. In the case of Air Canada, the expert found the app wasn’t masking replays from users’ screens.
“This gives Air Canada employees—and anyone else capable of accessing the screenshot database—to see unencrypted credit card and password information,” the App Analyst said told TechCrunch.
After examining the apps that relied on Glassbox, the mobile expert warned of the potential for similar data exposure.
“Since this data is often sent back to Glassbox servers I wouldn’t be shocked if they have already had instances of them capturing sensitive banking information and passwords,” the App Analyst added.
When asked by TechCrunch why their privacy policies failed to mention the screen-grabbing feature, each company responded with vague answers. The App Analyst argues that users can’t make decisions about their data if they aren’t properly informed.
- The best free password managers
- What’s the most secure operating system?
- How to encrypt an iPhone in seconds
Mikael Thalen is a freelance journalist based in Seattle, covering all things technology, including social media, data breaches, hackers, and more.