{"id":5859,"date":"2017-01-20T02:32:23","date_gmt":"2017-01-20T07:32:23","guid":{"rendered":"https:\/\/me-en.kaspersky.com\/blog\/?p=5859"},"modified":"2017-06-21T06:56:58","modified_gmt":"2017-06-21T10:56:58","slug":"meitu-permissions","status":"publish","type":"post","link":"https:\/\/me-en.kaspersky.com\/blog\/meitu-permissions\/5859\/","title":{"rendered":"Meitu \u2013 the app with all the permissions"},"content":{"rendered":"<p>Meitu, the \u2018anime-makeover\u2019 app is doing something that users perhaps didn\u2019t realize they\u2019d signed up to. It\u2019s <a href=\"http:\/\/www.independent.co.uk\/life-style\/gadgets-and-tech\/news\/meitu-app-beauty-safety-privacy-download-ios-android-permissions-secure-a7536666.html\" target=\"_blank\" rel=\"noopener nofollow\">been found<\/a> to be harvesting all sorts of data on users, including your location, reading, changing and deleting the data in your phone\u2019s memory, access your IMEI number (unique identifiers for phones) and more.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-5860\" src=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/37\/2017\/01\/05112127\/meitu-app-permissions-featured-1024x672-1.jpg\" alt=\"\" width=\"1024\" height=\"672\"><\/p>\n<p>This is somewhat concerning considering the app makers don\u2019t tell you what they\u2019re doing with the data. Are they using it for advertising purposes or for something else? The chances are it\u2019s to do with adverts (as most things seem to be these days) but as users are kept in the dark regarding the purpose, it\u2019s tough to say.<\/p>\n<blockquote class=\"twitter-tweet\" data-width=\"500\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\">Let me get this straight\u2026<br>All of you just installed a photo app from China that requires these permissions? Let me know how it works out. <a href=\"https:\/\/t.co\/wGDUYbRdSA\" target=\"_blank\" rel=\"noopener nofollow\">pic.twitter.com\/wGDUYbRdSA<\/a><\/p>\n<p>\u2014 Greg Linares (Laughing Mantis) (@Laughing_Mantis) <a href=\"https:\/\/twitter.com\/Laughing_Mantis\/status\/821978447551397888?ref_src=twsrc%5Etfw\" target=\"_blank\" rel=\"noopener nofollow\">January 19, 2017<\/a><\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>As ever, we always recommend to do your home works with apps like this: check to see if the app in question actually needs those permissions (for example: does a photo-sharing app require your location?)<\/p>\n<p><em>\u201cIt\u2019s all too easy, when installing a new app, to simply click through all the installation screens, including the one where it lists the permissions the app wants. But it\u2019s unwise to do so: you should carefully check to make sure that an app isn\u2019t asking for permissions that it doesn\u2019t need to function. And even if it does \u2018need\u2019 it, don\u2019t accept unless you\u2019re comfortable with it accessing this function or data on your device: if you don\u2019t think it needs to access something, don\u2019t allow it!\u201d<\/em> says David Emm, a principal security researcher of Kaspersky Lab\u2019s GReAT.<\/p>\n<p>Also remember that you can control app permissions in later versions of Android using the <a href=\"https:\/\/support.google.com\/googleplay\/answer\/6270602?hl=en-GB\" target=\"_blank\" rel=\"noopener nofollow\">settings menu<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Meitu, the \u2018anime-makeover\u2019 app is doing something that users perhaps didn\u2019t realize they\u2019d signed up to. It\u2019s been found to be harvesting all sorts of data on users, including your<\/p>\n","protected":false},"author":437,"featured_media":5860,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1225],"tags":[105,1279,109,43],"class_list":{"0":"post-5859","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-privacy","8":"tag-android","9":"tag-app-permissions","10":"tag-apps","11":"tag-privacy"},"hreflang":[{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/meitu-permissions\/5859\/"},{"hreflang":"ar","url":"https:\/\/me.kaspersky.com\/blog\/meitu-permissions\/4174\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/meitu-permissions\/10716\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/meitu-permissions\/8293\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/meitu-permissions\/8841\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/meitu-permissions\/9918\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/meitu-permissions\/9663\/"},{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/meitu-permissions\/2898\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/meitu-permissions\/13890\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/meitu-permissions\/6624\/"},{"hreflang":"pl","url":"https:\/\/plblog.kaspersky.com\/meitu-permissions\/6046\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/meitu-permissions\/9550\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/meitu-permissions\/13691\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/meitu-permissions\/13890\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/meitu-permissions\/13890\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/me-en.kaspersky.com\/blog\/tag\/android\/","name":"Android"},"_links":{"self":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/5859","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/users\/437"}],"replies":[{"embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/comments?post=5859"}],"version-history":[{"count":1,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/5859\/revisions"}],"predecessor-version":[{"id":6251,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/5859\/revisions\/6251"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/media\/5860"}],"wp:attachment":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/media?parent=5859"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/categories?post=5859"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/tags?post=5859"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}