Skip to main content

Data Vulnerability on Apple Devices Using Keyboard Extensions

Posted by Julia

In the News 

Can third-party keyboards be causing you more harm than good? In Apple warns that third-party keyboards on iOS 13 and iPadOS can send data to the internet without permission, Chris Welch at The Verge discusses a vulnerability in the most recent iOS13 and iPadOS which compromises the security and privacy of personal data. Welch details that the use of third-party keyboards including Grammarly might export the data that you type and other content onto the internet without explicit user consent. Welch clarifies that Apple automatically forces the use of the iOS keyboard when a password is required, so passwords were not compromised in this situation. Welch states that a patch for this error is currently being tested and should be available soon. 

Our Take 

As more and more of our daily lives become connected to smart devices and computers, it is critical that users maintain a level of autonomy in where their data goes. The countless stories in the past few years about data misuse have sparked privacy regulation and heightened sensitivity about the need for user consent. Apple’s update vulnerability directly contradicts the privacy and security-focused mindset that they have recently been advertising. While some users may have already secured their data from their keyboards or may not care if keyboards use their data, the error elevates the level of distrust many consumers have in the tech industry. Regardless of whether you use third-party keyboards or not, be sure to update your iOS when the new version is released to ensure your data is secured in the best way possible! 

Recommendations 

How can you protect the privacy of your personal data?   

  • Understand the risks of putting your personal information into the world, and only share what you have to 
  • Utilize additional security/privacy measures and settings on apps, accounts, and platforms whenever possible  
  • Only install software, programs, and keyboards that you can verify are safe and secure
  • Refrain from discussing and typing highly sensitive information without additional encryption protection 
  • Make sure to update your devices and programs frequently to avoid running a compromised edition 
  • Always evaluate the positives and negatives of installing a plug-in, keyboard, or software edition to see if it is worth it 

Categories: Data, Privacy

Leave a Comment