Fri, 06 Nov 2009 iPhone developer accused of stealing user data via app backdoor

The complaint seeks class action status so other users of Storm8 games

Nick Spence

A US iPhone developer behind a series of popular games has been accused of stealing users data via a backdoor in the applications.

The complaint (PDF link) claims developer Storm8, based out of Redwood Shores, California, games contained secret code that bypassed safeguards built into the iPhone software to prevent the unauthorised snooping.

The complaint, filed on behalf of iPhone owner and gamer Michael Turner of Lynnwood, Washington, seeks class action status so other users of Storm8 games can also join, and insists the company has violated the Computer Fraud and Abuse Act and California's computer crime law, among other statutes.

According to the complaint, on or about 26th August, 2009, Storm8 acknowledged it had been accessing, collecting, and transmitting user phone numbers after the press reported the problem and members of the Storm8 user community brought their concerns to Storm8’s attention.

Storm8 responded in a support email saying: "Thanks again for alerting us of the situation. We did have a bug that has been fixed. The updated app will need to go through the regular review process. You should expect to see it live shortly in the app store. Once again we thank you for bringing this to our attention and apologise to our users for the oversight."

The complaint contends the Storm8’s characterisations of its practice of harvesting phone numbers as a "bug" and an "oversight" are false, claiming Storm8 could not have accidentally harvested its users’ phone numbers unless it used very specific and specialised software code to do so.

Popular Storm8 iPhone titles include World War, iMobsters, Racing Live, Vampires Live, Kingdoms Live, Zombies Live, and Rockstars Live. Many are available in both free and paid versions along with 'Honor Points' and 'Favor Points.'

"Storm8 is the creator of the #1 Role Playing Games on the iPhone and iPod Touch. Each game released by Storm8 has reached the Top 10 on the App store free app category," the company says on the Storm8 website.

"Our network of Role Playing Games have been downloaded over 20 Million times, making us one of the most popular game developers on the iPhone."

Storm8 hasn't yet responded to requests for comment.

[Via The Register]

Check out our new Macworld Mobile site.

Follow Macworld UK on twitter: www.twitter.com/macworlduk

RSS
Digg

Email A Friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

Permalink This Article

This articles permalink is:
http://www.macworld.co.uk/ipod-itunes/news/index.cfm?newsid=27657

<<prev article | back to news index | next article>>

Question of the day!

Mark Hattersley
Editor in Chief

Do you use Adobe Photoshop with a Wacom tablet?

Question of the day!

Do you use Adobe Photoshop with a Wacom tablet?

% of Macworld readers agree with you

Yes

TBC

How does a Wacom tablet improve the Photoshop experience?

Follow the conversation at @TabletChat

paintings & illustrations, mostly, which i upload to flickr.RT @fragmentedm

I draw manga/anime characters. I also do graphic design and photography.RT @spialelo

Yes. I usually put them up on my #deviantart account for feedback on how to improve.RT @spialelo

Comments received

James K said on Fri, 06 Nov 2009

Good things Apple test apps prior to releasing them through iTunes.

David said on Fri, 06 Nov 2009

I downloaded the mob game from them 2 days ago, have deleted it now but who knows what they may have stolen!

alastair said on Fri, 06 Nov 2009

@James K:
And *how* exactly are they supposed to test that it isn't "stealing phone numbers". If it really wanted, it could encrypt the data before sending it, and then there's no easy way that Apple or anyone else could tell.

The fact is that you are implicitly trusting any program you run on any device you own; there is no way, in general, that you can tell what it is really doing. Even running things like Little Snitch is no guarantee, since a talented developer could easily work around such a program if they wanted.

Kevin said on Fri, 06 Nov 2009

Wow, I can't believe it. Truly amazing that they deliberately wrote the app to harvest the phone number, hoping they would get away with it.

Patrick said on Fri, 06 Nov 2009

"stealing users data" should be:
"stealing users' data".

ADC said on Fri, 06 Nov 2009

@ Patrick: anus

Hoopla said on Fri, 06 Nov 2009

@alastair:
We put up with all the limitations on the (non-jailbroken) iPhone because it is more than a computer, and it makes sense to limit what apps can do in exchange for security and stability. If apps really aren't running in an isolated "sandbox", then Apple's review process is all that is protecting users.

They need to either fix the OS so that apps can't get outside the sandbox or fix their testing so that it catches this sort of thing, whether intentional or inadvertent.

@Patrick said on Fri, 06 Nov 2009

For fucks sake fuck off

@alastair said on Fri, 06 Nov 2009

shall we just bend over and take it then? Can't be Apple's fault because even thought they control what you put on the phone they are sodding perfect!

Fritz said on Fri, 06 Nov 2009

@Patrick "for fucks sake" should be "for fuck's sake."

Peter said on Fri, 06 Nov 2009

@Hoopla: Excellent point.

Ask any Fanboi about the App Store and they'll tell you that one of the reasons is that, without Apple looking at Apps, you'd have all the viruses and worms and such that Windows Mobile has (Wait--Mac OS X is secure. iPhone OS X isn't?)

Now, suddenly, Apple isn't responsible for security? Okay, fair enough. So, why again is there only one App Store that developers must distribute their code through?

Elysian said on Fri, 06 Nov 2009

Patrick does't seem to know what an apostrophe is for!

Stephanie K said on Sat, 07 Nov 2009

I have 8 of their rpg apps! I don't even know how long I've had them. I have iMobsters, World War, Kingdoms, Racing, Ninjas, Zombies, Rockstars, and Vampires...

We know who you are.... said on Sat, 07 Nov 2009

Bring on Little Snitch for the iPhone

Storm8 said on Sun, 08 Nov 2009

??????

Disclaimer
Opinions expressed here are those of the writers and do not reflect those of Macworld. Macworld accepts no responsibility legal or otherwise for their accuracy of content.
Click here to read the house rules.

Click here for the latest reader comments

Latest News

More news...

iPhone 3G S Video Review

Related News

More iPod/iPhone news...

Mac Broadband?

Search news

Search Google

Newsletter signup

It's easy and free to get the latest news headlines, reviews and opinions straight to your email inbox. Sign up NOW to make sure you receive the latest Mac news, reviews and tutorials on your favourite topics.

Latest issue: Ipod User

Find out what's in this month's Macworld here or buy now.

Macworld reader poll

Are you going to buy an Apple iPad?:

View poll results

Have your say in the
Macworld forums!

Register now

Stay on top of the latest, breaking Mac news and chat with other Mac professionals and enthusiasts about the issues that matter to you. Register with Macworld today to join our forums and receive our twice-weekly email newsletter, Macworld Mainline.

RSS

Have the latest content delivered to your desktop via RSS. Use the links below to get access to a specific blog, news, or reviews feed.

Subscribe to our feeds here

Latest PC industry news

MACWORLD MARKETPLACE

	Computer & Laptop At Ciao you can read consumer reviews on a large number of Apple products like iPods, iPhones, Apple laptops and Apple computers. Compare prices of your favourite Apple products today.
	Are you a new customer? Are you doubtful? Try it for free! 4 classic products: try with no risks. 48 hours from now!
	Circus Ponies NoteBook - the easy way to get organized on the Mac NoteBook is the award-winning application that gets you organized. Store notes in electronic notebooks, add text, drag in files, "clip" web pages and other content. Annotate with diagrams, sketches, highlighting, keywords, even voice recordings. Find anything instantly with NoteBook’s patented Multidex^TM. Publish to the web, including MobileMe.
	50% off ebooks It doesn't get much hotter than Mac OS X and iPhone development - visit http://apress.com/mac. Whatever your level, and whatever your background, Apress offers a complete package of books to get you up and developing for iPhone and Mac OS X. Use the exclusive MacWorld coupon code, MACWORLDOC, at Apress.com to receive 50% off your cart.
	Beat the Credit Crunch - Lease your Mac from Hardsoft. Hardsoft are the only 'one stop' solution for the supply and finance of I.T. to businesses throughout the UK via our regional branch offices. We are uniquely both equipment Apple Approved Reseller and licensed Credit Brokers and have tailored a solution which includes a full 3 year warranty and an equipment upgrade every 18 month.