Urgent Cybersecurity Warning: ‘Data-Hungry’ Apps Spy via Location, Mic, and Personal Data Access
2 mins read

Urgent Cybersecurity Warning: ‘Data-Hungry’ Apps Spy via Location, Mic, and Personal Data Access

news0Tagged , , , , , , , , , , , ,

Popular Apps Demand Excessive Data Permissions, Raising Privacy Concerns
(Including images: Facebook, Xiaomi, and AliExpress permissions charts from original article)

A new investigation by consumer group Which? reveals that popular apps like Facebook, Instagram, and Xiaomi Home request alarming levels of access to users’ personal data. The study, conducted with cybersecurity firm Hexiosec, analyzed 20 widely used apps across categories like social media, shopping, and fitness. Combined, these apps—downloaded over 28 billion times globally—seek hundreds of permissions, including risky access to microphones, location, and device files.

Key Findings

  • Xiaomi Home topped the list with 91 permissions (5 risky), followed by Samsung Smart Things (82 permissions, 8 risky) and Meta-owned apps:
    • Facebook: 69 permissions (6 risky)
    • WhatsApp: 66 permissions (6 risky)
    • Instagram: 56 permissions (4 risky)
  • TikTok requested 41 permissions (3 risky), while YouTube sought 47 (4 risky).
  • Apps like AliExpress and Xiaomi sent data to servers in China, including to ad networks. AliExpress also spammed users with 30+ marketing emails monthly.

Why It Matters
“Risky” permissions—like microphone access or tracking precise location—can expose users to invasive advertising or data breaches. For instance, 16 apps allowed pop-ups even when notifications were blocked, while 7 started running at phone startup without user interaction. Though some permissions are functional (e.g., WhatsApp needing a mic for calls), others, like Strava accessing recently used apps, lack clear justification.

Privacy Tips
Which? advises users to:

  1. Review app store privacy info before downloading.
  2. Read permissions and adjust settings via Settings > Apps.
  3. Delete unused apps and associated accounts.

Company Responses

  • Meta: Denies mic access without explicit user consent.
  • Samsung: Claims compliance with UK data laws.
  • TikTok: States data collection supports “security and user experience.”
  • AliExpress: Says location data isn’t used in the UK.

The Bottom Line
While apps offer convenience, blindly accepting permissions risks privacy. As Which? editor Harry Rose warns, “Free apps often cost you in data.” Always scrutinize what you’re agreeing to—your information is valuable.

Full study details on Which?.

(Images: Include 2-3 key charts showing permissions for Meta apps, Xiaomi, and AliExpress with captions from original article.)

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Posts