之前报导过 iOS 14 Beta 新增的“Paste Notification”(剪贴通知)功能,让很多会偷窥用户剪贴簿资料的 App 曝光。外国有安全研究员表示,发现有 53 个 App 会偷窥用户剪贴簿的资料。
安全研究员 Tommy Mysk 接受访问时透露,自己早在今年 3 月便发现多达 53 个 App 启用时,会无差别地偷窥用户剪贴簿的资料,甚至连使用相同 Apple ID 的装置也会受到影响。当中包括:Fox News、New York Times、the Wall Street Journal、Bejeweled、Fruit Ninja、PUBG Mobile、Viber、Weibo、Zoosk、AccuWeather、DAZN、Overstock。
抖音、10% Happier 和 Hotel Tonight 等开发商均称会尽快修正问题,不会再偷窥用户剪贴簿的资料。然而,有指读取系统剪贴簿内容的功能其实很普遍,例如 Google Chrome、Pixelmator 和 UPS 都是靠读取用户的文字和讯息而运作。
新闻类
ABC News — com.abcnews.ABCNews
Al Jazeera English — ajenglishiphone
CBC News — ca.cbc.CBCNews
CBS News — com.H443NM7F8H.CBSNews
CNBC — com.nbcuni.cnbc.cnbcrtipad
Fox News — com.foxnews.foxnews
News Break — com.particlenews.newsbreak
New York Times — com.nytimes.NYTimes
NPR — org.npr.nprnews
ntv Nachrichten — de.n-tv.n-tvmobil
Reuters — com.thomsonreuters.Reuters
Russia Today — com.rt.RTNewsEnglish
Stern Nachrichten — de.grunerundjahr.sternneu
The Economist — com.economist.lamarr
The Huffington Post — com.huffingtonpost.HuffingtonPost
The Wall Street Journal — com.dowjones.WSJ.ipad
Vice News — com.vice.news.VICE-News
游戏类
8 Ball Pool — com.miniclip.8ballpoolmult
AMAZE!!! — com.amaze.game
Bejeweled — com.ea.ios.bejeweledskies
Block Puzzle — Game.BlockPuzzle
Classic Bejeweled — com.popcap.ios.Bej3
Classic Bejeweled HD — com.popcap.ios.Bej3HD
FlipTheGun — com.playgendary.flipgun
Fruit Ninja — com.halfbrick.FruitNinjaLite
Golfmasters — com.playgendary.sportmasterstwo
Letter Soup — com.candywriter.apollo7
Love Nikki — com.elex.nikki
My Emma — com.crazylabs.myemma
Plants vs. Zombies™ Heroes — com.ea.ios.pvzheroes
Pooking – Billiards City — com.pool.club.billiards.city
PUBG Mobile — com.tencent.ig
Tomb of the Mask — com.happymagenta.fromcore
Tomb of the Mask: Color — com.happymagenta.totm2
Total Party Kill — com.adventureislands.totalpartykill
Watermarbling — com.hydro.dipping
社交媒体类
TikTok — com.zhiliaoapp.musically
ToTalk — totalk.gofeiyu.com
Tok — com.SimpleDate.Tok
Truecaller — com.truesoftware.TrueCallerOther
Viber — com.viber
Weibo — com.sina.weibo
Zoosk — com.zoosk.Zoosk
其他
10% Happier: Meditation — com.changecollective.tenpercenthappier
5-0 Radio Police Scanner — com.smartestapple.50radiofree
Accuweather — com.yourcompany.TestWithCustomTabs
AliExpress Shopping App — com.alibaba.iAliexpress
Bed Bath & Beyond — com.digby.bedbathbeyond
Dazn — com.dazn.theApp
Hotels.com — com.hotels.HotelsNearMe
Hotel Tonight — com.hoteltonight.prod
Overstock — com.overstock.app
Pigment – Adult Coloring Book — com.pixite.pigment
Recolor Coloring Book to Color — com.sumoing.ReColor
Sky Ticket — de.sky.skyonline
The Weather Network — com.theweathernetwork.weathereyeiphone
- TikTok and 53 other iOS apps still snoop your sensitive clipboard data
(本文由 Unwire HK 授权转载;首图来源:Unsplash)
延伸阅读:
- 苹果 iOS 14 揭抖音偷窥 iPhone 剪贴簿,用户密码全都露
