科技创新!
LinkedIn says its extra intense clipboard snooping in iOS is a bug
LinkedIn's iOS app has taken the ongoing issue of snooping at users' clipboards to whole, new level. The company has already said it's a mistake that will be fixed.
The issue of iOS apps monitoring copy-paste data has been a subject of concern since March, when a pair of software developers published their research. Tommy Mysk and Talal Haj Bakry discovered that a large number of existing apps (at the time) checked out users' clipboard data every time those apps were opened.
This is alarming when you really sit down and think back on all the times you've copy-pasted sensitive data, such as a sign-in credentials from your password locker or a credit card number that you don't feel like typing in again. If you haven't done that, great. But plenty of people have. And you probably don't want strangers peeping at your clipboard data regardless.
The snooping issue reared up again in recent weeks with the beta release of iOS 14. Apple's next major operating system update for iPhone includes a new feature that lets people look at how their data is being accessed, something that's been described as the privacy equivalent of "nutrition labels."
As people started playing with the beta, some discovered that a number of major apps, like TikTok, are still doing some form of clipboard snooping. On Thursday, one Twitter user, Don Morton, demonstrated how LinkedIn's snooping is among the most invasive examples, with the app copying what's in the clipboard with every keystroke.
This Tweet is currently unavailable. It might be loading or has been removed.
Morton also discovered that Reddit's app is doing the same thing. (A fix is in the making for that as well.)
This Tweet is currently unavailable. It might be loading or has been removed.
Morton went and wrote at greater length about the real issue with this snooping in a Substack post. While these companies ought to fix their apps, he wrote, the bigger issue is that such data is accessible to developers in the first place.
"I could easily see 'phishing apps' starting to pop up (if they are not already) with the sole intention to scrape as much clipboard data as possible. To me, this is just as bad or even more worrying than the companies that have already been called out for it. For the most part, the companies that have been getting called out have motive to be 'good'. I’m just starting to think about companies or apps that have no intention of being good," Morton wrote.
The Substack post also includes a list of major apps that are still doing the snooping (and any company response, when there is one). He also recommends checking to see if your password manager has a feature that wipes clipboard data after a short amount of time.
LinkedIn exec Erran Berger responded to Morton's tweet with a technical explanation of what's happening here, adding that "we don't store or transmit the clipboard contents." A company spokesperson later confirmed to ZDNet that the issue is a bug, and work is already underway on a fix.
UPDATE: July 4, 2020, 4:04 p.m. EDT Added a note about Reddit confirming a fix is coming.
友链
外链
互链
Copyright © 2023 Powered by
LinkedIn says its extra intense clipboard snooping in iOS is a bug-寸地尺天网
sitemap
文章
4
浏览
76
获赞
2668
热门推荐
The Moto G Fast and Moto E are Motorola's new budget Android phones
Motorola continues to add to its already extensive catalog of budget phones. On Friday, the companyKeke Palmer not knowing Dick Cheney is the new meme for ignoring your ex
Keke Palmer's reaction to Dick Cheney is, frankly, pure art. The former Nickelodeon star-turned-HustMicrosoft Paint won't be banished to oblivion—for now
One of technology's last truly innocent creations just got an 11th hour reprieve. Microsoft Paint, tAmazon Echo Dot Kids Edition violated children's privacy law, say advocacy groups
Privacy concerns surrounding Amazon's Echo line of smart speakers are nothing new, but it's a differThe Moto G Fast and Moto E are Motorola's new budget Android phones
Motorola continues to add to its already extensive catalog of budget phones. On Friday, the companyFacebook brings on 'Daily Caller' affiliate as fact
Nothing goes together like "fact checking" and "Tucker Carlson," right?Facebook has a new fact-checkWhy Apple's 'Screen Time' crusade rings so hollow
With his spectacles and kindly smile, Tim Cook is just one of those guys who sounds like he means weGoogle just launched the second version of Google Glass Enterprise Edition
Google Glass may have never become a fixture in regular people's daily lives like Google may have hoLenovo Flex 5G laptop now available through Verizon
5G isn't just for phones. Starting this week, you can buy a real, actual laptop that connects to theMan's hilarious review of a waterpik proves flossing isn't that bad after all
Raise your hand if you've ever lied to the dentist about how often you floss. Don't worry, you're amGenesis Mint is the cutest electric concept car for city living
Concept cars at auto shows rarely disappoint -- and the compact electric car from luxury car brand GMen's fertility startup 'Dadi' announces $5 million funding round
Despite the fact that getting pregnant usually takes two to tango, conversations and solutions in fePrince Harry is 'over the moon' after Meghan Markle gives birth to a baby boy
The royal family has officially welcomed a new member.On Monday, the @sussexroyal Instagram accountRyan Reynolds' tweet about auditioning at Marvel is classic Ryan Reynolds
If Ryan Reynolds has never won a caption competition, the only possible explanation is that Ryan ReySpotify's first piece of hardware is a voice assistant for your car
It's a car thing.That's the name of Spotify's first voice-controlled plug-in smart device: Car Thing