Developers use Apple certificates to distribute pornography and gambling apps

Developers use Apple certificates to distribute pornography and gambling apps

Towards the end of last month, a policy faded over Facebook and Google when it turned out that both companies were using their Apple corporate certificates (designed to install exclusive apps on employee devices outside the App Store) to place apps. not approved by Ma on user devices.

The companies have apologized a thousand and, theoretically, the mess has already been resolved, but guess what looks like the bottom hole.

A report from TechCrunch found that some developers are using their business certificates to install pornography or gambling apps on iPhones and iPads from users outside the App Store who, as is well known, has a strict adult content policy and approves gambling apps only under a series of tightly monitored specific rules.

The site discovered and verified 24 such applications; half of them with pornographic content and half of gambling involving real money transactions. Here's the tip of the iceberg: Thousands of other untrustworthy sites advertise their perfectly illegal iOS apps using the same methods.

With the discovery, it is clear that Apple's corporate certificate program needs change. Currently, all it takes to get a certificate like fill out an online form and pay Apple the $ 300 membership fee; The developer simply commits to creating apps for internal use only and not sharing them with users, but Apple (apparently) never checks later if this basic rule is being met.

In apps investigated by TechCrunch, developers associated with commonly used certificates had fake addresses and an indication of activity completely disconnected from application purposes. Some of the software had its functionality blocked during the investigation, but others continue to operate normally until now.

An Apple spokesperson issued the following statement:

Developers who abuse our corporate certificates are violating the Apple Developer Certificate Program and will have their contracts terminated; if appropriate, they will be permanently removed from our developer program. We are always investigating cases of misuse and prepared to take immediate action.

Apps tested by TechCrunch don't pose any threats to users' devices, but that doesn't mean developers don't take advantage of certificates to create malicious applications that can capture data or install malware on iPhones or iPads. Therefore, until Apple takes more stringent action, it is a good idea to run away from any app that may be installed outside the App Store.

via MacRumors