Christian apps sending user data to trackers, advertisers

Some religious-themed apps for mobile devices like smartphones and tablets may be engaged in rather unholy activity by sending churchgoers' data to third parties, a security vendor warned.

 

Bitdefender said said these Christian-themed apps monitor users' location and could upload information to "dubious" third parties.

 

"Your religious-themed app just might know when you skip a church service. And some of the data you transmit through the heavens might be going straight to the underworld," Bitdefender's Bianca Stanescu said in a blog post. 

 

According to Stanescu, Bitdefender's antivirus software detected some free Android apps like Varsity Catholic, Our Lady of Good Counsel, St. John the Baptist Parish and iCatholic "have the ability to track users’ location while they are open."

 

"However, most claim this permission helps them find Mass and Confession services on the go," she added. 

 

Another app identified by Bitdefender was Christian Dating, which claims to be the dating world’s “largest community” for almost 30 Christian denominations. It supposedly caters to Baptists, Catholics, Orthodox and Lutherans – and allegedly uploads users’ locations to advertising platforms. The app has been removed from Google Play, Stanescu said. 

 

Also, she said Bitdefender Labs found the connection was not encrypted and could be intercepted.

 

"Christians dating through the app also had their device’s unique identifier sent to third parties. The unique device identifier can be used to track user behavior across apps. The app didn’t need these permissions to function," she added.

 

“An unshakeable faith is not recommended when it comes to Android app installations,” said Bitdefender Chief Security Strategist Catalin Cosoi.

 

Cosoi added that while location tracking can sometimes be useful, "it hides security risks and is one of the most-abused features of apps."

 

"Users should approach all permissions and apps with a healthy dose of skepticism. Personal data sent to third-parties may be uploaded to scammers’ data bases for fraud and identity theft attacks,” Cosoi said.

 

Bitdefender suggests that users check the permissions requested by the apps.

 

It added people should make sure they can trust the developers, "as some are also able to send text messages and make calls in users’ behalf." — KDM, GMA News