Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

For me, iOS, but they were caught on both platforms.


The app stole your contacts after you granted the app permission to access them, right? Not saying it’s your fault, just wondering if they used some loophole.


> The app stole your contacts after you granted the app permission to access them, right?

That completely misses the point. With mobile applications you are only a dark pattern away from clicking on a button and letting a third-party spy on all your contacts, location, personal info, etc.

You don't get that with the web.


So they didn’t use a loophole? Cool, cause that was all I cared about.

Also, you will get all of that with the web. Just check google chrome to see what kind of permissions can be granted for any individual website. Contact sharing is right around the corner.


LinkedIn is why I won't ever again grant any app this permission ever.


How long ago was this? I get the sense that their sandboxing is improving?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: