A few days ago, we gave you a list of passwords not to use. You might recall that the data from the post was collected from an iOS app called Big Brother Security. The software made headlines when the developer went public with the information.

Daniel Amitay performed a little experiment by anonymously collecting user’s 4 digit passwords from his Big Brother Security app. Though his findings were quite interesting, publishing them may not have been the brightest move…

Apple eventually got wind of it, and, apparently, collecting sensitive data like user’s passwords doesn’t sit so well with the folks in Cupertino. The app was pulled immediately.

Amitay figured that since his password-collecting code kept everything 100% anonymous, it wouldn’t be violating any privacy laws — Apple disagreed. The developer got a phone call claiming his app was removed due to him “surreptitiously harvesting user passwords.”

Daniel has since sent in an update to his app without the password-collecting code, and is awaiting word. Good riddance. Although it appears like he had a decent case (even quoted bits of the EULA), there was just something unsettling about an app secretly collecting passwords.

Would you allow Amitay’s password-collecting app to stay in the App Store?


  • I would ban his app in the same way Apple did. Because many Apple users feel safe about iOS because of Apple’s “closed” arquitecture. Shame on Apple for allowing such “malicious” code before.

  • AMB

    I wouldn’t, the app did not ask in any way the user’s permission to collect password data which is a clear breach of everyone’s privacy. This app should never be allowed back on the AppStore but Apple is just as much to blame as this guy since they are the ones who allowed the app on the store in the first place.

    Apple needs to up it’s standards and check well what the apps on its store can do.

  • XepptizZ

    This dataharvesting should always be done via a survey with clear privacy disclaimers. Apple did the right thing, but it does make me wonder what they actually test for. Seems like the dame debacle like camera+ unauthorized using volumecontrols and the tethering app disguised as a lame flashlight app.

  • numbnuts

    Hypocritical double standards on the part of Apple .. their recent ‘secret’ location gathering methods without the knowledge of the user were potentially far more invasive than this anonymous collection of numbers. maybe Apple pulled it so they can implement it into iOS5 lol 😛

  • Luis

    we all know there is no way to send 100% anonymous data over the internet. this is why it got banned.