Apple has a difficult relationship with the EU, where the company has been doing battle over illegal tax benefits from the Irish government, and facing challenges in light of the new GDPR standards.
That’s why it was so surprising when Apple CEO Tim Cook took the stage at the 40th International Conference of Data Protection and Privacy Commissioners as the keynote speaker and attacked what he termed the “data industrial complex.”
Expressing concern over the ways in which personal data might be used against individuals, Cook noted that “Our own information – from the everyday to the deeply personal – is being weaponized against us with military efficiency.” But how believable are Cook’s comments? As he promotes security, his own company’s technology remains vulnerable, and maybe even acts in intentionally predatory ways regarding personal information mining.
What Apple Knows
One of the quickest ways to assess Apple’s relationship to data acquisition and use is through a new tool the company recently released as part of GDPR guidelines; under GDPR, companies needed to improve client security practices. In response, for EU users, Apple launched a data transparency tool allowing clients to see exactly what the company knows about them. This was back in May, and more recently they released an additional, non-required version for US-based customers. But this data reveal can also be disillusioning. It’s a reminder of everything that goes on behind the scenes at major corporations and of the fact Cook’s statements may be disingenuous.
Growing Vulnerabilities
In addition to active data collection, Apple’s systems have become increasingly vulnerable to outside security incursions. Particularly as Apple products have started to play host to a variety of browser extensions and apps, Macs have been exposed to viruses more often. And though it’s possible to remove viruses from the Mac system, most users experience at least some data theft or other system damage before they realize there’s a virus present.
Some of the apps responsible for surreptitiously selecting user data are actually popular programs with a wide distribution, including Adware Doctor, Dr. Unarchiver, and Dr. Cleaner, all distributed by Trend Micro. Using fake system dialogue, the apps fooled users into giving them access to their systems so that they could collect their browser history. The company has since apologized, but who knows how many other companies are collecting data. And what is Tim Cook doing about it? Unfortunately, the answer may be somewhat unsavory.
Apple’s Own Shortfalls
Tim Cook may have limited control over the underlying code of App Store offerings, but he certainly oversees Apple’s own products, and recently those items have been less than top performers in terms of security. The company’s recent Mojave OS update was released with several major security flaws, and one of those preyed on the system’s new dark mode. This new mode, which can make the desktop more visually pleasing and easier to read, left the system vulnerable to hackers, who could break into MacOS Install. This is just one of several major vulnerabilities Apple has had to contend with since the launch.
Tim Cook can put on a sincere face and claim that Apple makes customer privacy a top priority, but until users see evidence of that, it will continue to be a hard sell. As such, the first step is to improve internal security measures. The company needs to lead by example, and then crack down on secondary infractions.
