Tuesday, June 25, 2024

Apple is accused of censoring apps in Hong Kong and Russia

According to two stories published on Thursday, Apple has been accused of sacrificing human rights for financial gain by obediently complying with censorship requests in China and Russia.

The Apple Censorship Project, which is sponsored by free speech advocacy group GreatFire, published the reports titled “Apps at Risk: Apple’s Censorship and Compromises in Hong Kong” and “United Apple: Apple’s Censorship and Compromises in Russia.”

According to Benjamin Ismail, campaign and advocacy director at GreatFire and project head of GreatFire’s Apple Censorship project, “as our two reports illustrate, evidence of Apple’s censorship abound.”

“Apple’s temporary withdrawal from Russia following the start of the war in Ukraine, and Apple’s decision to move part of its production out of China, have not provided tangible evidence of any improvement of the situation in the App Store so far. For all we know, Apple is still willing to collaborate with repressive regimes.”

Ismail said he expects the reports will be used to try to convince lawmakers to pass antitrust bills that aim to mitigate Apple’s App Store gatekeeping powers – something European lawmakers may have achieved with the recently approved Digital Markets Act.

The Hong Kong-focused Apps at Risk report contends that Apple’s 50 percent share of the smartphone market makes it the Chinese Communist Party’s de facto kill switch for politically challenging content.

It mentions that there were 2,370 unavailable apps in the Hong Kong App Store in November 2022. 10,837 apps are missing from the Chinese App Store, while 2,754 apps are absent from the Russian App Store.

According to the report, a lot of VPN apps have disappeared from the Hong Kong App Store. Many media and information apps have allegedly been banned globally over the past two years, raising the suspicion that Apple is either engaging in global self-censorship or is doing so on behalf of authorities.

Recommended:  Hacktivism and DDOS Attacks Rise Dramatically in 2022

The Apps at Risk report report says Apple has failed to offer support for the right of people in Hong Kong to access information without restriction and to express themselves online, even as the Chinese government has suppressed the democracy movement in Hong Kong.

“Apple’s known about Beijing’s authoritarian preferences for decades,” the report says. “Apple’s response to the events in Hong Kong the last few years are not knee-jerk reactions. Apple’s response is aligned to its global business strategies, with a top priority of appeasing the Chinese government to protect Apple’s supply chain, distribution channels, and revenue stream.”

The report demands that Apple officially reaffirm its support for the freedom of information and speech of Hong Kong residents.

The Russia investigation examines discrepancies between how Chinese and Russian censorship demands are carried out but comes to the same findings about Apple’s business practises. It claims that between 2018 and 2022, Apple appeared to accede to censorship requests from the Kremlin more quickly.

“If Apple’s compliance with requests for censorship is best illustrated by cases of app removals from the iOS App Store,” the report says. “Russia’s innovative and extensive oppression has also led to censorship within software (LGBTQ+ watch faces), accessories (LGBTQ+ watch bands), software-based cartography (Crimea), protocols (Private Relay), and even the design of iOS (Russian iOS).”

The Russia report, citing Apple’s removal of LGBTQ+ apps in furtherance of state-backed homophobia, calls out “the insincerity of Apple’s self-proclaimed support for LGBTQ+ Rights.”

Asked whether Apple’s deployment of end-to-end encryption in iCloud might change things, Ismail expressed skepticism.

“We know nothing about how the data are stored in China Guizhou data center, which is owned by a Chinese company and not by Apple,” he said in an email to The Register. “In this case, and for many other examples related to the management of the App Store (e.g. Government App Takedown Requests, App Store Review Board, etc.), Apple’s trademark is opacity.”

Recommended:  Apple Releases Updates to Patch Actively Exploited Zero-Day Flaw in iOS, iPadOS, macOS

Ismail cautioned that the leverage authorities have in China and Russia over Apple will remain. “The relationships between those regimes and Apple are still asymmetrical, and strongly in favor of the governments of the country where Apple wants to maintain its access to the market, to build and to sell its products,” he said, pointing to Apple’s Private Relay, which never made it to China and was canceled in Russia.

Ismail however expressed optimism that Apple may be forced to allow third-party app stores. That requirement, called for under Europe’s Digital Markets Act, is also a part of the Open App Markets Act, a bill that GreatFire has endorsed and US lawmakers have yet to pass.

“If as a user, you are free to download and install apps from any store and the web, then the removal of apps by Apple at the behest of a repressive government will have less impact on the users,” Ismail explained. “Developers will still be able to update (and therefore secure) their apps and offer them to the users without control or intervention from Apple.”

“Moreover, it should be easier for Apple to dismiss censorship demands by saying that the users can still find the app targeted by the authorities, outside of the App Store. Eventually, it might dissuade the authorities to even make the demand to Apple.”

“Of course sideloading is not the perfect solution and other stores might be targeted by repressive governments. The important part is to let the users handle their device the way they want it to work. To have developers, publishers and customers all subject to Apple’s decision is very dangerous. It has been the case repeatedly over the last decade.”

Recommended:  Manchester United: UK cyber security agency assist club with recovery

Asked if Apple’s rivals have handled the situation any better, Ismail pointed to Google, which shut down its Chinese search engine in 2010 after it was hacked from within the country.

Google and Twitter, he said, do much better in terms of transparency, citing an Apple Censorship report from April “showing Apple is lying in its Transparency reports and deliberately conceals the scale of app’s unavailability and the reality of the 175 App Stores it operates worldwide.”

“It might be time for Apple to consider the possibility that it does more harm by being present in China than by not being there,” said Ismail. “In its Human Rights Policy, Apple claims ‘Our approach is based on the UN Guiding Principles on Business and Human Rights,’ yet every principle set in that UN document is the exact opposite of Apple’s policy.”

Apple did not respond to a request for comment.

Suggest an edit to this article

Check out our new Discord Cyber Awareness Server. Stay informed with CVE Alerts, Cybersecurity News & More!

Cybersecurity Knowledge Base


Remember, CyberSecurity Starts With You!

  • Globally, 30,000 websites are hacked daily.
  • 64% of companies worldwide have experienced at least one form of a cyber attack.
  • There were 20M breached records in March 2021.
  • In 2020, ransomware cases grew by 150%.
  • Email is responsible for around 94% of all malware.
  • Every 39 seconds, there is a new attack somewhere on the web.
  • An average of around 24,000 malicious mobile apps are blocked daily on the internet.

ClosePlease login
Share the word, let's increase Cybersecurity Awareness as we know it
- Sponsored -

Sponsored Offer

Unleash the Power of the Cloud: Grab $200 Credit for 60 Days on DigitalOcean!

Digital ocean free 200

Discover more infosec

User Avatar
Steven Black (n0tst3)
Hello! I'm Steve, an independent security researcher, and analyst from Scotland, UK. I've had an avid interest in Computers, Technology and Security since my early teens. 20 years on, and, it's a whole lot more complicated... I've assisted Governments, Individuals and Organizations throughout the world. Including; US DOJ, NHS UK, GOV UK. I'll often reblog infosec-related articles that I find interesting. On the RiSec website, You'll also find a variety of write-ups, tutorials and much more!

more infosec reads

Subscribe for weekly updates