![]() Since there is no trusted certificated installed, there’s also no technical possibility to do man-in-the-middle attacks on the user traffic, but it still can be effectively blocked locally on the device.Pop-up ads might be one of the most irritating things since Internet has ever been introduced. What’s also important is that none of the user traffic goes through an actual VPN or proxy server, so the solution we’ve used guarantees data safety. Apple has just approved this version for publication, so I’m letting everyone know that ad blocking in third party apps is again possible using AdBlock. Now it does not require a trusted certificate to be installed, so the potential security threat described in the article is eliminated. One of the things we’ve changed in it is the method used to store configuration on the device. When Apple pulled current version of AdBlock from the App Store, we already had v2.0 rady and uploaded it for review almost instantly. It just so happens that for some time we have been working on a major update of our app. It appears that the same problem affected also other developers of ad blocking apps. On 9th October AdBlock got removed from the App Store by Apple, due to the problem described here in this post. Both of our apps have always worked not only in Safari, but also in other apps. We’ve been blocking ads on iOS since 2012 (so much earlier than iOS9 Safari content blocking feature was available, which caused the recent rise of many iOS blockers). I’m one of the developers behind AdBlock ( ) and Weblock ( ) apps. Whether or not these apps will return with the capability of blocking content inside other apps remains to be seen, but given that Apple doesn’t offer an official method by which to do that, it seems unlikely. We are working closely with these developers to quickly get their apps back on the App Store, while ensuring customer privacy and security is not at risk. We’ve removed a few apps from the App Store that install root certificates which enable the monitoring of customer network data that can in turn be used to compromise SSL/TLS security solutions. The company also noted, however, that it is working with the developers of the removed apps to get them back onto the App Store with more security measures in place.Īpple is deeply committed to protecting customer privacy and security. Been Choice, because it did this, was able to block ads inside other apps.Īpple said in a statement to TechCrunch that it removed “a few apps” because they compromise SSL/TLS security solutions. One of the most prominent apps that has been removed is ad blocker Been Choice, which performs essentially the exact aforementioned process of installing a root certificate on the device. This is a process that, obviously, could be used for malicious practices. ![]() ![]() The process that developers went through to be able to block ads in third-party apps is basically setting up a VPN where all traffic is run through the developer’s servers to remove the ads. The ad blockers that have been removed are ones that block content both in Safari and in other apps. Among some of the apps being removed are a select number of ad blockers. By installing their own root certificate, the app developers could theoretically gain access to encrypted traffic from users. Apple this evening has removed a handful of apps from the App Store that install root certificates of their own.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |