Apple missed screenshot-snooping malware in code that made it into the App Store, Kaspersky claims Kaspersky eggheads say they’ve spotted the first app containing hidden optical character recognition spyware in Apple’s App Store. Cunningly, the software nasty is designed to steal cryptocurrency. The researchers found the malware in an iOS app called ComeCome, which is also available from Google’s Play store, and claims to …
As a developer: From what I’ve read these apps had a reasonable excuse for permission to access your photos. I had an app that needed to scan a QR code _once_ when the app launched for the first time, which meant I needed to access the camera. I would have much preferred if there was a setting “allow reading QR codes” valid for one use.
Same here. Probably best to put this kind of photos into a separate category as a user and handle access with a separate permission.
I often have text in photos. Wandering through a store looking for a somewhat expensive item, I’ll take photos of the items with exact name and price to check them out at home. I take screenshots of parking spaces to find my way back. And so on.
Sure we all do that. That's not the same thing as taking a photo of something that contains the password to your bank or crypto or whatever. If a rogue app steals a photo you took of the product sticker on an item you saw in a pricey shop, or the floor/location in the parking ramp you parked at when you went to said pricey shop, that's hardly going to concern you.
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2025
