Skip to main content

UBER IOS APP CAN VIRTUALLY ‘SEE’ YOUR PHONE SCREEN, AND APPLE APPROVED IT


WHY IT MATTERS TO YOUPermissions inside the Uber app sound like a privacy nightmare, but have never been abused, and will soon be removed.
To better prepare its Apple Watch app, Uber used technology enabling it to view and record what was happening on an iPhone's screen, even when the Uber app was only running in the background. The permission to do this was granted by Apple, and although Uber claims not to use the system anymore, it remains part of the app. The news comes from Sudo Security Group, which unearthed the capability — called an Entitlement — in the Uber app.
While this sounds like a security and privacy nightmare, the entitlement doesn't work like a screen-recording app, according to an app researcher speaking to Gizmodo, and will be removed from the app soon. What it does is visualize colors and pixels on the screen, not precise details. However, the concern is this data could be decoded and interpreted to reveal sensitive personal information, user habits, or, should Uber's app be hacked by criminals, passwords and other login information.
What makes this unusual is that Uber is the only third-party app developer using it. Other entitlements are commonly used by app developers, as they provide access to key phone features, such as the camera and Apple Pay. They operate in a similar way to permissions on Android. The entitlement used by Uber here is considered reserved for Apple's use only, due to its privacy and security concerns. Using entitlements without Apple's approval would normally result in the developer being banned from the App Store.
The entitlement was used by Uber to assist the Apple Watch Series One render maps correctly. Apple partnered with Uber to show how the app would operate on the Apple Watch during its March 2015 event. Apparently, developers had four months to prepare Apple Watch apps before the launch, which may explain why Apple granted Uber use of the entitlement at the time, to ensure it was stage-ready on the day.
Uber says the entitlement has not been used since then, and it has never tracked any unauthorized access or use of it. However, Uber's reputation regarding privacy has been tarnished before, and although it says it will remove the entitlement, it's unclear why it hasn't done so before now, given the potential for abuse.

Source:here

via Blogger http://ift.tt/2xX6okH

Comments

Post a Comment

Popular posts from this blog

Trends 2023 Smartphone

  It's difficult to predict exactly what new trends will emerge in the smartphone industry in 2023, but some potential developments include: Foldable smartphones: These devices feature flexible screens that can be folded in half, allowing for a larger display in a more compact form factor. 5G capabilities: As the 5G network becomes more widely available, we can expect to see more smartphones with built-in support for the faster speeds and lower latency of this new network. Increased emphasis on AI: Artificial intelligence is becoming an increasingly important feature in smartphones, from virtual assistants like Siri and Alexa to improved camera capabilities and more. Improved battery life: As smartphones become more powerful, battery life is an important consideration. Expect to see more smartphones that can last all day on a single charge. Advanced camera features: Smartphone cameras are already quite good, but we can expect to see even more advanced features in the future, such a...
Post a Comment
Read more

Blockchain

  Blockchain is a decentralized digital ledger technology that enables secure and transparent record keeping. It is often used to facilitate transactions, such as financial transactions or the transfer of digital assets.   A blockchain is essentially a digital ledger of transactions that is duplicated and distributed across the entire network of computer systems on the blockchain. Each block in the chain contains a number of transactions and a reference to the previous block, forming a chain of blocks. This creates a permanent, unchangeable record of all transactions that is stored across the entire network. The most well-known application of blockchain technology is Bitcoin, a decentralized digital currency. However, blockchain can be used for a wide variety of other applications as well, such as: Smart contracts: Blockchain can be used to execute and enforce the negotiation or performance of a contract automatically. Supply chain management: Blockchain can be used to track t...
Post a Comment
Read more

What Niche On Technologies

  There are many different niches within the technology industry, some examples include: Artificial intelligence (AI) and machine learning (ML): This niche focuses on the development of intelligent systems that can learn and adapt to new situations. Internet of Things (IoT): This niche focuses on the connection of everyday devices to the internet, such as smart home devices and wearables. Virtual reality (VR) and augmented reality (AR): This niche focuses on the creation of immersive virtual environments and the overlay of digital information on the real world. Blockchain: This niche focuses on the development of decentralized digital ledgers, which are used for secure and transparent record keeping. Cybersecurity: This niche focuses on protecting computer systems and networks from unauthorized access, use, disclosure, disruption, modification, or destruction. Robotics and automation: This niche focuses on the development of robots and automated systems that can perform tasks witho...
Post a Comment
Read more