Scary Permissions Requested by Mobile Apps and Consequences
1. Augustine Fou- 1 -
Dr. Augustine Fou
http://linkd.in/augustinefou
May 2013
Scary Mobile
App Permissions
2. Augustine Fou- 2 -
Permissions Requested by Apps
Augustine Fou- 2 -
Install malware
Read your texts
Connect to Wi-Fi
Disable lock screen
Change system settings
Made to look like
official Google app
3. Augustine Fou- 3 -
Permissions Requested by Apps
Augustine Fou- 3 -
Track where you are
Spam others
Read all your contacts;
track your calls
Turn on microphone,
take pictures/video
4. Augustine Fou- 4 -
Permissions Requested by Apps
Augustine Fou- 4 -
Call home to
mothership
Re-route your calls
through servers to
record or listen in
5. Augustine Fou- 5 -
It seems that just when Path was emerging from one
privacy PR nightmare, another one landed on its
doorstep. The day after the company reached 10
million users, The Verge related the story of digital
marketer Stephen Kenwright who had an unpleasant
experience with the app.
Kenwright downloaded the app to his phone, tried it,
then removed it. The next morning, he discovered
that despite the app being removed, a good many of
his contacts had gotten robocalls and texts saying
that Kenwright wanted to share items with them
through Path.
Consequence
Augustine Fou- 5 -
Read all his
contacts
Spammed them
while pretending
to be you
6. Augustine Fou- 6 -
Snapchat Permissions
Augustine Fou- 6 -
Your messages
send SMS messages
Network communication
receive data from Internet
full network access
view network connections
Phone calls
read phone status and identity
Storage
modify or delete the contents of
your USB storage
Camera
take pictures and videos
Microphone
record audio
Your social information
read your contacts
Your accounts
find accounts on the device
System tools
test access to protected storage
Affects Battery
prevent device from sleeping
control flashlight
control vibration
7. Augustine Fou- 7 -
WhatsApp Permissions
Augustine Fou- 7 -
Your accounts
find accounts on the device
use accounts on the device
add or remove accounts
create accounts and set passwords
read Google service configuration
Your location
approximate location (network-based)
precise location (GPS and network-based)
Your messages
receive text messages (SMS)
send SMS messages
Network communication
receive data from Internet
full network access
view network connections
view Wi-Fi connections
connect and disconnect from Wi-Fi
Your personal information
read your own contact card
Phone calls
read phone status and identity
directly call phone numbers
Storage
modify or delete the contents of your USB storage
System tools
modify system settings
install shortcuts
uninstall shortcuts
test access to protected storage
Your applications information
run at startup
retrieve running apps
Microphone
record audio
Your social information
read your contacts
modify your contacts
Affects Battery
prevent device from sleeping
control vibration
Sync Settings
read sync statistics
read sync settings
toggle sync on and off
8. Augustine Fou- 8 -
Facebook Messenger Permissions
Augustine Fou- 8 -
Your location
precise location (GPS and network-based)
approximate location (network-based)
Your messages
receive text messages (SMS)
receive text messages (MMS)
read your text messages (SMS or MMS)
edit your text messages (SMS or MMS)
send SMS messages
Network communication
full network access
view network connections
view Wi-Fi connections
change network connectivity
receive data from Internet
Your personal information
read your own contact card
Phone calls
read phone status and identity
directly call phone numbers
Storage
modify or delete the contents of your USB storage
System tools
install shortcuts
test access to protected storage
Camera
take pictures and videos
Other Application UI
draw over other apps
Microphone
record audio
Your social information
read your contacts
read call log
Your accounts
find accounts on the device
Affects Battery
prevent device from sleeping
control vibration
Your applications information
run at startup
Audio Settings
change your audio settings
Sync Settings
read sync settings
9. Augustine Fou- 9 -
Instagram Permissions
Augustine Fou- 9 -
Your location
precise location (GPS and network-
based)
Network communication
full network access
receive data from Internet
Your personal information
read your own contact card
Storage
modify or delete the contents of your
USB storage
System tools
read battery statistics
test access to protected storage
Your applications information
retrieve running apps
Camera
take pictures and videos
Microphone
record audio
Your social information
read your contacts
Your accounts
find accounts on the device
Affects Battery
prevent device from sleeping
10. Augustine Fou- 10 -
Related Articles
Fake Facebook Profiles
By: Augustine Fou, July 12, 2013
Fake LinkedIn Profiles
By: Augustine Fou, July 11, 2012
Online Advertising Fraud
By: Augustine Fou, April 30, 2013
Digital is a Philosophy
By: Augustine Fou, March 31, 2011
Augustine Fou- 10 -
11. Augustine Fou- 11 -
Dr. Augustine Fou – Digital Consigliere
“I advise clients on optimizing
advertising and marketing spend; and
this includes reducing or eliminating
waste. In digital channels, the large
amounts of data allow us to detect and
mitigate quickly.”
FORMER CHIEF DIGITAL OFFICER, HCG (OMNICOM)
MCKINSEY CONSULTANT
CLIENT SIDE / AGENCY SIDE EXPERIENCE
PROFESSOR AND COLUMNIST
ENTREPRENEUR / SMALL BUSINESS OWNER
PHD MATERIALS SCIENCE (MIT '95) AT AGE 23
@acfou
ClickZ Articles: http://bit.ly/augustine-fou-clickz
Slideshares: http://bit.ly/augustine-fou-slideshares
LinkedIn: http://linkd.in/augustinefou