Facebook Is At It Again By PAYING People To Install Data Harvesting VPN Software…. Yet Another Reason To #DeleteFacebook [UPDATED]

You might recall that Facebook and their data harvesting VPN were punted from the Apple App Store because it violated the App Store rules. It now seems that Facebook is fighting back in a very unique way. They’re PAYING people between 13 to 35 up to $20 per month along with referral fees to sideload the Facebook Research app using an enterprise certificate on the iPhone. And this has been going on since 2016. If you’re not familiar with the concept of sideloading, let me explain it this way. On iPhones you can only install apps from the App Store unless they are enterprise certificate that big companies use to install custom apps. Now using an enterprise certificate is legitimate, unless you are doing what Facebook appears to be doing. In any case, TechCrunch exposed Facebook’s “Project Atlas” program that encompasses this. And to cover their tracks, Facebook has been using beta testing services like Applause, BetaBound and uTest to recruit participants to install the Facebook Research app.

Facebook confirmed the program in a statement provided to TechCrunch and said that the Facebook Research app was “in line with Apple’s Enterprise Certificate program,” though that does not seem to be the case based on Apple’s Enterprise Certificate policy. Which means that Facebook is lying. But I guess they had a change of heart as they decided to deep six this program. But only on iOS. It still exists on Android. I’m guessing that Facebook figured out that Apple could simply invalidate the certificate that these scumbags are using seeing as Apple issues these certificates which would put an end to this. So they decided to beat them to the punch and spin it in some positive light when there’s nothing positive here at all.

Here’s the bottom line. Facebook is not to be trusted in any way, shape or form. This is the latest example of this. And at some point they don’t deserve any more chances to be trusted. Instead, they should be wiped out of existence. That should start with Apple punting the Facebook app off the App Store along with anything other apps that Facebook makes.

UPDATE: Apple has apparently revoked the certificate that Facebook used with “Project Atlas” which as a side effect has also killed the ability for Facebook to test pre-release versions of Facebook, Instagram and other apps internally. Plus it’s also taken down employee only apps as well. This apparently is being treated as a 911 event within Facebook. Apple has commented that they did this because Facebook was in “clear breach of their agreement with Apple.” and they had the right to revoke the certificate “which is what we did in this case to protect our users and their data.”

Sucks to be you Facebook because you deserve this.

5 Responses to “Facebook Is At It Again By PAYING People To Install Data Harvesting VPN Software…. Yet Another Reason To #DeleteFacebook [UPDATED]”

  1. […] their iDevice is a bigger problem than Facebook. I say that because Google has been caught doing a version of what Facebook was caught doing. According to TechCrunch, Google has been distributing an app called “Screenwise […]

  2. […] more than 24 hours ago it came to light that Facebook was not the only one abusing Apple enterprise certificates, but Google was doing that as well and […]

  3. […] conversation that that happened before Facebook got access to enterprise certificates again. The ones that Apple took away from them for abusing them. But in a statement to Mike Isaac of The New York Times, a Facebook spokesperson said that the […]

  4. […] engineered? The one that got kicked off the iOS platform? The one that Facebook decided to use some underhanded tactics to keep it alive and in use on iOS before Apple took them down again? Well, Facebook has decided to shelve […]

  5. […] to me asked if they had been hacked. While profiles have been known to install malicious software, and in the case of Facebook bypass the app store entirely, that isn’t the case here. There is no security risk here that is present. So you need not […]

Leave a Reply

%d bloggers like this: