In addition, the company also claims to have permanently dumped all legacy logs from the US-based AWS servers, including the logs of browser histories that the users permitted at installation (and which was only being held for 3 months).Īccording to Trend Micro, the presence of the same data collection capabilities across a number of its applications was the result of the use of common code libraries. The security firm also notes that the browser history data was uploaded to a U.S.-based server hosted by AWS and managed/controlled by Trend Micro.Īll of the offending applications have been already stripped off the browser history collection capabilities, Trend Micro also says. The security firm also points out that users were informed on the collection and use of browser history data, both in the applicable EULAs and at installation, when the user was also prompted to accept the data collection. “This was a one-time data collection, done for security purposes (to analyze whether a user had recently encountered adware or other threats, and thus to improve the product & service),” Trend Micro claims. The data collection practice, the company says, only targeted “a small snapshot of the browser history on a one-time basis.” Specifically, only the browsing history for the 24 hours prior to the installation were targeted.
In a statement regarding these allegations, the company confirmed not only that the two applications collected user data, but also that other Mac apps developed by the company did the same, including Dr Cleaner Pro, Dr. Cleaner, two programs developed by security software provider Trend Micro. The program was observed sending the harvested data to a server located in China.Īmong the other applications that engaged in the collection of browsing history, researchers mentioned Dr. The initial reports focused on Adware Doctor, a $4.99 application that would gather Safari, Chrome, and Firefox browsing history, the list of running processes, and a list of downloaded software. Recent reports revealed that so-called security applications for Mac that are being distributed through Apple’s App Store collected and exfiltrated users’ browsing histories along with some other sensitive information (such as lists of installed apps). Trend Micro on Monday confirmed that some of its applications for Mac collect browser history and send it to the security firm’s servers.
0 kommentar(er)
