Hacker News new | past | comments | ask | show | jobs | submit login

They seem to consider any use of an SDK or library to be "data sharing". For example, if an app uses OkHttp (an open-source HTTP client library) [1] then it counts as data sharing. That doesn't seem right...

[1] https://square.github.io/okhttp/




Yeah this entire thing just reeks of low effort clickbait.

Classing OkHttp as "Medium Risk" is ridiculous (especially since under the hood it's been the default HTTP library on Android since something like 5.0). That alone signals that the authors don't have the the skills or expertise to carry out this study.

It's a shame - since I bet there is definitely data being leaked places it shouldn't be in apps like these, and a proper investigation would be interesting.


I feel like they must have just seen it was a library from Square and assumed it sent data to Square. I doubt that 40% of the apps were written with no SDK or library.




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: