Skip to main content

UBER IOS APP CAN VIRTUALLY ‘SEE’ YOUR PHONE SCREEN, AND APPLE APPROVED IT


WHY IT MATTERS TO YOUPermissions inside the Uber app sound like a privacy nightmare, but have never been abused, and will soon be removed.
To better prepare its Apple Watch app, Uber used technology enabling it to view and record what was happening on an iPhone's screen, even when the Uber app was only running in the background. The permission to do this was granted by Apple, and although Uber claims not to use the system anymore, it remains part of the app. The news comes from Sudo Security Group, which unearthed the capability — called an Entitlement — in the Uber app.
While this sounds like a security and privacy nightmare, the entitlement doesn't work like a screen-recording app, according to an app researcher speaking to Gizmodo, and will be removed from the app soon. What it does is visualize colors and pixels on the screen, not precise details. However, the concern is this data could be decoded and interpreted to reveal sensitive personal information, user habits, or, should Uber's app be hacked by criminals, passwords and other login information.
What makes this unusual is that Uber is the only third-party app developer using it. Other entitlements are commonly used by app developers, as they provide access to key phone features, such as the camera and Apple Pay. They operate in a similar way to permissions on Android. The entitlement used by Uber here is considered reserved for Apple's use only, due to its privacy and security concerns. Using entitlements without Apple's approval would normally result in the developer being banned from the App Store.
The entitlement was used by Uber to assist the Apple Watch Series One render maps correctly. Apple partnered with Uber to show how the app would operate on the Apple Watch during its March 2015 event. Apparently, developers had four months to prepare Apple Watch apps before the launch, which may explain why Apple granted Uber use of the entitlement at the time, to ensure it was stage-ready on the day.
Uber says the entitlement has not been used since then, and it has never tracked any unauthorized access or use of it. However, Uber's reputation regarding privacy has been tarnished before, and although it says it will remove the entitlement, it's unclear why it hasn't done so before now, given the potential for abuse.

Source:here

via Blogger http://ift.tt/2xX6okH

Comments

Post a Comment

Popular posts from this blog

Trends 2023 Smartphone

  It's difficult to predict exactly what new trends will emerge in the smartphone industry in 2023, but some potential developments include: Foldable smartphones: These devices feature flexible screens that can be folded in half, allowing for a larger display in a more compact form factor. 5G capabilities: As the 5G network becomes more widely available, we can expect to see more smartphones with built-in support for the faster speeds and lower latency of this new network. Increased emphasis on AI: Artificial intelligence is becoming an increasingly important feature in smartphones, from virtual assistants like Siri and Alexa to improved camera capabilities and more. Improved battery life: As smartphones become more powerful, battery life is an important consideration. Expect to see more smartphones that can last all day on a single charge. Advanced camera features: Smartphone cameras are already quite good, but we can expect to see even more advanced features in the future, such a...
Post a Comment
Read more

Why would you want to build your own VR backpack? To save money and move freely!

One of the first issues we came across with the  HTC Vive  was the cable that follows you around the room, potentially tripping you up or pulling on the headset when you've taken time to get a perfect fit. While mainstream wireless VR systems are seemingly somewhere around the corner, some PC manufacturers have taken it upon themselves to create the next best thing: VR backpacks. The cable running from your PC to your headset is no longer a problem, and immersion is taken one step further. Unfortunately, these backpacks are usually prohibitively expensive, and, besides, you might already have the hardware needed to create your own. Is it possible? Is it worth the time? Let's find out! Pre-built backpack options Before we get into building our own backpack, let's take a look at some pre-built offerings from HP, ZOTAC, and MSI. HP OMEN X For  about $3,000 , you can grab this sleek, compact PC with an Intel Core i7-7820HK quad-core processor (CPU), an NVIDIA GTX 10...
Post a Comment
Read more

Redmi K20, K20 Pro get a price cut in China

The  Redmi K20  and  K20 Pro  have received a price cut in China. The 6GB/128GB variant of the K20 is now down to CNY1,999 ($290/€260) from CNY2,099 ($305/€275), whereas the Pro version with the same memory configuration is now down from CNY2,599 ($380/€340) to CNY2,299 ($335/€300). The 8GB/128GB model of the K20 Pro has also received a price drop and it now costs CNY2,499 ($365/€325). Redmi K20 Additionally, Redmi has also slashed the prices of the  Redmi 7 ,  Redmi 7A ,  Redmi Note 7 , and the  Redmi Note 7 Pro . You can check out the table below for more details. Phone Original Price New Price Redmi K20 (6GB/128GB) CNY2,099 ($305/€275) CNY1,999 ($290/€260) Redmi K20 Pro (6GB/128GB) CNY2,599 ($380/€340) CNY2,299 ($335/€300) Redmi K20 Pro (8GB/128GB) CNY2,799 ($405/€365) CNY2,499 ($365/€325) Redmi Note 7 (6GB/64GB) CNY1,399 ($205/€180) CNY1,199 ($175/€155) Redmi Note 7 Pro (6GB/128GB) CNY1,599 ($230/€210) CNY1,399 ($205/€180) Redmi 7...
Read more