Hackers use apps like Candy Crush and Tinder to spy on people and access personal information

According to a recent report from 404 Media, some of the most popular mobile apps, such as Candy Crush and Tinder, are allegedly collecting sensitive location data from users without their consent. The applications, accessible on both Android and iOS, could engage in data gathering via the advertising network, leading to significant privacy issues. This information is thought to have been acquired by a location data broker, Gravy Analytics, whose affiliate, Venntel, has formerly provided this type of data to US law enforcement officials.

The report indicates that this data gathering probably occurs via real-time bidding (RTB) systems, in which businesses compete to show ads in applications. During the display of these ads, data brokers such as Gravy Analytics reportedly can capture and collect user location information, even without the direct participation of app developers. The app developers do not oversee this process, resulting in users being oblivious to the fact that their location is being tracked.

Security specialists, such as Zach Edwards from the cybersecurity company Silent Push, are concerned about the extent of this data collection. As per the report, Edwards mentioned that this is among the first instances where the public has solid proof indicating that certain data brokers are obtaining user information from advertising bid streams instead of from code integrated within the applications themselves.

The disclosed information allegedly contains more than 30 million location markers, featuring sensitive sites such as the White House, Kremlin, Vatican City, and a number of military installations. The apps linked to this breach feature well-known games such as Candy Crush, Subway Surfers, Temple Run, along with dating services like Tinder and Grindr. Health-related applications, including MyFitnessPal and several pregnancy trackers, are also noted, along with religious and VPN applications, which paradoxically are frequently installed to improve privacy.

This privacy violation has sparked global concerns, especially after the Federal Trade Commission (FTC) recently placed a ban on Gravy Analytics and Venntel for selling location information without user approval. Although numerous apps may appear secure at first glance, this event suggests the increasing dangers linked to the exploitation of user information via indirect methods such as advertising networks.

Experts recommend that smartphone users exercise caution when allowing location access to apps and think about examining app privacy policies more thoroughly. Android users should refrain from giving unnecessary permissions like location and camera access to apps that don’t need them for essential functions. iPhone users may activate the “Ask Apps Not to Track” option post-installation of an app to reduce tracking and data gathering.

The United States has implemented extensive new regulations restricting the export of artificial intelligence (AI) chips, tightening restrictions for firms like Nvidia, as it seeks to limit China’s technological progress. These fresh restrictions may greatly affect the worldwide AI chip market, particularly in India. The upcoming regulations, scheduled to be implemented in a year, enforce stringent restrictions on the computing capabilities of AI chips sold to various nations. Exceptions are granted for allied countries that follow the security and human rights standards approved by the US. These new regulations aim to stop adversaries, especially China and Russia, from exploiting advanced AI technology for military or surveillance uses.

“Handling national security threats necessitates compromises.” “This regulation guarantees that our allies can utilize advanced technology while protecting our interests,” stated US commerce secretary Gina Raimondo in a blog post from the White House.

The rules expand upon earlier chip export restrictions, aiming to guarantee that AI advancement is in accordance with US standards. National Security Advisor Jake Sullivan stated in an official comment: “This regulation guarantees that the infrastructure for advanced AI systems stays in America or friendly territories, blocking offshoring like what happened with chips and batteries.”

Nvidia expressed significant dissent against the newly proposed regulations. Nvidia, a frontrunner in AI chip manufacturing, cautioned that the policy could jeopardize America’s technological supremacy worldwide. “The regulation poses a risk to disrupt innovation and global economic growth,” stated Ned Finkle, Nvidia’s vice president for government relations. The firm emphasized the possible unforeseen effects of these limitations, such as pushing clients toward Chinese rivals like Huawei, which has achieved considerable progress in AI chip technology. Nvidia’s worries reflect wider industry anxieties that excessive regulation might hinder competition.

China condemned the US measures, accusing the US government of disrupting international trade and innovation. The European Union also expressed apprehension, noting that the restrictions could strain transatlantic tech collaboration. “It is in the US economic and security interest that the EU buys advanced AI chips without limitations,” EU officials said.

India, which has been pushing for AI and semiconductor manufacturing lately, could find itself at an advantage due to its strategic partnerships with the US. The restrictions exclude supply chain activities and gaming chips, but they bar exporting AI chips to nations like China and Russia. This policy could potentially redirect investments and resources toward countries like India, strengthening its position in the global AI and tech ecosystem.