蘋果下架眾多應用程式 被指涉及使用者隱私

Apple has removed hundreds of apps from the iTunes App Store that secretly collected personal information from anyone who downloaded them.

蘋果公司已經從蘋果商店中下架了上百個應用軟體，這些應用都涉及祕密收集使用者私人資訊。

Most of the 256 affected apps were made in China, but they were available worldwide on the app store and were downloaded 1 million times, according to app analytics service SourceDNA, which first discovered the problem.

根據一款名叫SourceDNA的分析服務應用軟體提供的資料，這次下架的256個應用中大部分出自中國，但是他們在蘋果商店中面向了全球，而且已經被下載了100萬次。也正是這個軟體第一個發現了這個竊取資訊的問題。

The apps' creators used a software development kit from a Chinese advertising company called Youmi, which allowed the developers to put ads in their apps. That's kosher.

這款應用的創始人使用了一款由名叫有米的中國廣告公司提供的軟體開發系統，這個軟體讓應用軟體開發者可以在自己的應用里加入廣告，這是可以的。

But Youmi's software gathered information about the people who downloaded the apps, including their email addresses and iPhone serial numbers -- sending all that data to Youmi's servers. That skirted Apple's strict privacy guidelines for app developers.

但是有米的軟體從下載了它的使用者哪裡收集了資訊，包括電子郵箱和電話序列號，並且將所有資料穿回給有米的伺服器。這種做法有悖於蘋果公司對應用軟體開發者嚴格的隱私保護要求。

And the way Youmi designed the software hid that fact from the developers and Apple's iTunes App Store gatekeepers.

而且有米這個軟體的設計方式將事實隱藏起來，使其不被使用它的軟體開發者和蘋果商店的守衛發現。

SourceDNA did not say which apps were affected. The company told Apple about the problem on Sunday, and Apple removed the apps on Monday.

SourceDNA 沒有說那些應用軟體受到影響。這家公司於週日向蘋果公司舉報了這件事，蘋果公司在週一就移除了這些違規的應用軟體。

"This is a violation of our security and privacy guidelines," Apple said in a statement. "The apps using Youmi's SDK will be removed from the App Store and any new apps submitted to the App Store using this SDK will be rejected."

“這是對我們的安保系統和隱私保護條例的一次攻擊，”蘋果公司公開表示，“使用了有米的SDK的應用軟體都將會被從蘋果商店裡清除，而且所有申請在蘋果商店上架的應用如果使用這個SDK也將會被拒絕。”

Anyone who already downloaded the apps will still be able to use them but the apps won't be updated.

任何已經下載了這些應用的使用者還能夠繼續使用，但是這些應用將不能再上傳資料了。

The data collection does not appear to be the developers' fault, since Youmi was disguising the fact that its software was sending that data to its servers. Apple said it is working with the app developers to update their apps, ensuring they are safe for customers and in compliance with the app store's guidelines. The apps are banned from the store until they are fixed.

收集資訊並不是軟體開發者的失誤，因為是有米在隱瞞事實，這些被竊取的資料實際上都是傳回到了它自己的伺服器裡。蘋果公司表示他們正在和應用軟體的開發者一起解決問題，重新上載這些應用，保證它們現在對消費者是安全的並且完全遵守蘋果商店的規定的。被禁止使用的應用在修護好了之後仍然可以重新回到商店。

This is the third big lapse in Apple's typically tight app store security in the past month.

這是上個月蘋果公司一直嚴苛的蘋果商店安全系統的第三次大漏洞。

Last week, Apple banned a group of apps that were able to peek into encrypted communications between the iPhones they were installed on and the servers the phones communicated with.

上週，蘋果公司又叫停了一組偷窺蘋果使用者之間加密的聊天內容的應用軟體，安裝了這些軟體的電話和與這部電話有資訊交流的伺服器都遭到了偷窺。上週，蘋果公司又叫停了一組偷窺蘋果使用者之間加密的聊天內容的應用軟體，安裝了這些軟體的電話和與這部電話有資訊交流的伺服器都遭到了偷窺。

In late September, the app store suffered a major attack, forcing Apple to remove dozens of popular apps that had been infected by malware. The malicious apps were capable of duping customers into giving up their iCloud passwords and opening dangerous websites.

九月底，蘋果公司遭到了一次大型攻擊，導致蘋果不得不移除幾十個受到惡意軟體攻擊的熱門應用。這些惡意軟體可以騙使用者說出他們的蘋果雲祕密，或者開啟危險的網頁。