New iOS App Sends Users' Web Traffic Through Its Proxy Servers 83
New submitter spac writes "AllthingsD has an interesting story about how a startup called Wajam requires users of their service to download a script that sets up a proxy to handle all network requests for the purpose of providing 'Social Recommendations' within built-in apps. The privacy implications of using this profile script isn't clearly presented to users. Are we really to entrust our data to a company founded by a man who comes from the world of browser toolbars? And for social search?!"
The company rushes to counter privacy concerns by pointing out that their service has "received security certifications from TRUSTe, McAfee and Norton."
Privileged app submitter (Score:4, Interesting)
As an iOS developer, if I submitted an app to the app store that does this, I'm certain it would be rejected for not meeting Apple's guidelines. Makes me wonder who had to be friends with who to get this greenlighted.
Re:The summary is wrong (Score:0, Interesting)
What do you expect? /. is all about trashing iOS these days.
Android is SWARMING in malware but you don't see those stories on /.
It's sad to see Slashdot lose its credibility so fast. /. has become an Android fan site and has ZERO credibility. Thank hacks like Timothy and Soulskill for that.
Android malware families nearly quadruple from 2011 to 2012
http://www.zdnet.com/blog/security/android-malware-families-nearly-quadruple-from-2011-to-2012/12171 [zdnet.com]
Summary: F-Secure has found that between Q1 2011 and Q1 2012, the number of Android malware families has increased from 10 to 37, and the number of malicious Android APKs has increased from 139 to 3,069.
Almost Every Android Device Compromised With "Some Kind Of Malware"
http://www.forbes.com/sites/adriankingsleyhughes/2012/07/27/bt-almost-every-android-device-compromis [forbes.com]
ed-with-some-kind-of-malware/
Summary: British Telecom says that one third of Android apps are compromised with some form of active or dormant malware, and that almost every Android device is infected.
âoeWe analyzed more than 1,000 Android applications and found a third compromised with some form of active or dormant malware,â said Jill Knesek, head of the global security practice at BT and former cybersecurity expert for the FBI. But if you think that is bad, it gets worse, reports EETimes.
âoeAlmost every device is compromised with some kind of malware, although often itâ(TM)s not clear if that code is active or what it is doing,â she said in a panel discussion at the NetEvents Americas conference.
Re:Not an app, a configuration (Score:5, Interesting)
You make a huge distinction for very little difference.
Regardless of HOW they get the user to use a proxy server, they still systematically socially engineering them to do so.
That they use methods that were designed for corporate phones and apply them to public subscribers is simply more evidence of misbehavior.
That you accepted my gift of a wall clock does not excuse the presence of my listening device embedded therein, even if the fine print in the
clock's user manual mentioned it.