[Ipg-smz] FW: Privacy expert Paul Bischoff comments on iPhone apps secretly recording your screen

Evan Schuman eschuman at thecontentfirm.com
Thu Feb 7 19:56:14 UTC 2019 

Thanks! I think I can work up enough outrage to do a column on this. 

 

_______

Evan Schuman

eschuman at thecontentfirm.com <mailto:eschuman at thecontentfirm.com> 

973-993-8098 <tel:973-993-8098>  (voice)

Computerworld weekly columnist (Column archive: http://www.thecontentfirm.com/weekly-column-on-computerworld)

Moderator for MIT Sloan Management Review events

Google Search: http://lmgtfy.com/?q=Evan+Schuman# <http://lmgtfy.com/?q=Evan+Schuman> 

https://twitter.com/eschuman

www.linkedin.com/in/schumanevan/ <http://www.linkedin.com/in/schumanevan/> 

Member, Internet Press Guild:  <http://netpress.org/> http://netpress.org/

 

From: Ipg-smz <ipg-smz-bounces at netpress.org> On Behalf Of Logan Harbaugh
Sent: Thursday, February 07, 2019 1:43 PM
To: ipg-smz at netpress.org
Subject: [Ipg-smz] FW: Privacy expert Paul Bischoff comments on iPhone apps secretly recording your screen

 

For those of you who haven’t already seen this…

 

 

Thanks, 

Logan G. Harbaugh
logan at lharba.com <mailto:logan at lharba.com> 
530-243-1346
1547 Magnolia Ave.
Redding, CA 96001
www.lharba.com <http://www.lharba.com/> 

 

From: Paula Brici [mailto:paula at eskenzipr.com] 
Sent: Thursday, February 7, 2019 10:36 AM
Subject: Privacy expert Paul Bischoff comments on iPhone apps secretly recording your screen

 

Responding to reports that iPhone apps are Many popular iPhone apps–including Abercrombie & Fitch, Hotels.com, Air Canada, Hollister, Expedia, and Singapore Airlines–are using a technology called “ <https://www.glassboxdigital.com/the-definitive-guide-to-session-replay-recording/> session replay” from customer experience analytics firm Glassbox to record everything you do on your iPhone when using their app, Paul Bischoff, privacy advocate with Comparitech.com <http://www.comparitech.com/> , said:

 

“The use of session replay services in iPhone apps is serious cause for concern for two reasons. The first is that the apps did not get consent to record sessions and take screenshots of users' devices and send them back to the app developers. Many of the apps make no explicit mention of the use of session replay services in their privacy policies. The second is that the data collected and sent to the app developers might not be properly secured. If the app developers do not take measures to properly mask sensitive information in their apps, then unencrypted screenshots containing passwords and credit card information could be accessed or intercepted by attackers.

 

I think it's ultimately up to Apple to solve this problem. Apple should better vet the apps that use session replay services to ensure they're secure and that they obtain opt-in consent, or session replay services should be banned from the App Store altogether. It's worth mentioning that many apps and websites use A/B testing to figure out what users are clicking on, but this data is usually aggregated and can't be connected to an individual, and they don't take screenshots. So alternatives do exist.”

 

Thanks, let me know if you have any questions for Paul.

 

Paula

 

Paula Brici

Eskenzi PR

+1 949-677-6527

 <mailto:paula at eskenzipr.com> paula at eskenzipr.com

 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://netpress.org/pipermail/ipg-smz_netpress.org/attachments/20190207/be4ceb1d/attachment.html>

More information about the Ipg-smz mailing list