Developers working on the Tor anonymity service asked Apple months ago to remove a malicious Tor browser that poses a threat to its users from the App Store (via Ars Technica). After receiving no action through official channels, Tor project members now are using more public means to get this app removed.

tor-browser
A report ticket published three months ago by volunteer Phobos details the issue with rogue app.

"Tor Browser in the Apple App Store is fake. It's full of adware and spyware. Two users have called to complain. We should have it removed."

Tor officials confirmed they filed a complaint with Apple in December 2013 and received a response that the app developer was allowed to defend his app from these accusations.

Several followup emails were sent to Apple, but there was no response from the Cupertino company. Twelve weeks later and the app remains in the App Store, prompting the team to step up their campaign to get the app removed.

"I think naming and shaming is now in order. Apple has been putting users at risk for months now," writes lunar

"I mailed Window Snyder and Jon Callas to see if they can get us past the bureaucracy.

Otherwise I guess plan C is to get high-profile people on Twitter to ask Apple why it likes harming people who care about privacy. (I hope plan B works.)," writes arma.

Apple's App Store is known for being a walled garden where apps are vetted before they are allowed entry into the App Store. The process is not flawless, though, with researchers from Georgia Tech last year showing how an innocuous app with hidden malware-type code could slip through Apple's app approval system.

Once a malicious app is identified in the App Store, Apple has in the past taken steps to remove the app, but the exact process by which an app is removed is not known. In an earlier example, Apple quickly pulled a Russian SMS app that quietly scraped address book contacts and sent them to the developer's server.

Update 8:26 PM: Tor Browser has been removed from the App Store.

Top Rated Comments

subsonix Avatar
subsonix
142 months ago
All I see is people wanting this fake Tor app to be removed because the name and logo are the same.

Perhaps it's not so smart to license the logo and trademark under creative commons if you want to control it.
Score: 8 Votes (Like | Disagree)
octothorpe8 Avatar
octothorpe8
142 months ago
Maybe they're leaving it up there to poison the name "Tor" so people think it's generally unsafe.
Score: 6 Votes (Like | Disagree)
rageguy Avatar
rageguy
142 months ago
I am unable to find out what is so malicious about this fake Tor app. I don't see evidence of malware. All I see is people wanting this fake Tor app to be removed because the name and logo are the same.

In other words, the original complaint "Tor Browser in the Apple App Store is fake. It's full of adware and spyware. Two users have called to complain. We should have it removed." appears to be false accusations.

Since no evidence has been presented, Apple of course will not remove the app. "Two users have called to complain" is not evidence.
Score: 5 Votes (Like | Disagree)
Parasprite Avatar
Parasprite
142 months ago
Perhaps it's not so smart to license the logo and trademark under creative commons if you want to control it.

IIRC the license requires you attribute their work and not claim or imply that you represent them in any way, making this somewhat of a null point.
Score: 3 Votes (Like | Disagree)
Parasprite Avatar
Parasprite
142 months ago
You don't need to recall, it's easy enough to google.

https://creativecommons.org/licenses/by/3.0/us/

I'm no lawyer, but the terms surrounding it apart from attribution seems pretty loose. On the other hand, allowing people to use your trademark seems like pretty obvious attack vector for a project like Tor, where trust is likely considered important. So why not use a strict license, or not allow sharing of the trademark at all. That way you would know if Tor=Tor so to speak.
Did you read the license or just the summary? Because it seems pretty straight-forward (at least to me) with what is and isn't allowable under the license.

You may not implicitly or explicitly assert or imply any connection with, sponsorship or endorsement by the Original Author, Licensor and/or Attribution Parties, as appropriate, of You or Your use of the Work, without the separate, express prior written permission of the Original Author, Licensor and/or Attribution Parties.
Score: 2 Votes (Like | Disagree)
needfx Avatar
needfx
142 months ago
self immolations should do the trick
Score: 1 Votes (Like | Disagree)
Read All Comments

Popular Stories

iOS 18

iOS 18.4 Will Include These New Features for Your iPhone

Wednesday February 5, 2025 7:15 am PST by
iOS 18.3 was released last month, so the first iOS 18.4 beta should be coming soon. iOS 18.4 is expected to be a more substantial update for the iPhone, with several new features and changes related to Apple Intelligence and beyond. Apple's website suggests that iOS 18.4 will be released in April, following beta testing. Below, we outline what to expect from the update so far. Apple...
Read Full Article
General Apple Invites Feature

Apple Launches New 'Invites' App

Tuesday February 4, 2025 8:00 am PST by
Apple today announced the launch of a new app called "Invites," which is designed to allow users to plan events like birthday parties, graduations, vacations, baby showers, and more. "With Apple Invites, an event comes to life from the moment the invitation is created, and users can share lasting memories even after they get together," said Brent Chiu-Watson, Apple's senior director of...
Read Full Article275 comments
App Store vs EU Feature 2

Apple Says It Doesn't Approve of EU Porn App

Monday February 3, 2025 1:15 pm PST by
Apple does not approve of the "Hot Tub" pornography app that was released for the iPhone in the EU using alternative app distribution, Apple said in a statement to MacRumors. Further, Apple is concerned about the potential user safety risks with a pornography app, and says that it undermines consumer trust in the Apple ecosystem. We are deeply concerned about the safety risks that hardcore...
Read Full Article524 comments
maxresdefault

An Apple TV Refresh is Coming in 2025 - Here's What You Should Know

Wednesday February 5, 2025 10:17 am PST by
Apple hasn't refreshed the Apple TV since 2022, but rumors suggest that we're finally going to get an update in 2025. We don't have a full picture of what to expect yet, but we have some hints on what's coming. Subscribe to the MacRumors YouTube channel for more videos. Updated A-Series Chip The current Apple TV 4K uses the A15 Bionic chip that was in the iPhone 13 lineup, and it's time for...
Read Full Article190 comments
applecare apple care banner

Apple Raises Monthly AppleCare+ Subscription Price for All iPhones

Tuesday February 4, 2025 9:35 am PST by
Apple this week increased the prices for its monthly AppleCare+ subscription prices for the iPhone, raising the cost by 50 cents for all models in the United States. Standard AppleCare+ for the iPhone 16 models is now priced at $10.49 per month, for example, up from the prior $9.99 per month price. The 50 cent price increase applies to all available AppleCare+ plans for Apple's current...
Read Full Article143 comments
iOS 18

iOS 18.3.1 Update Coming Soon for iPhones

Thursday February 6, 2025 7:31 am PST by
Apple is internally testing iOS 18.3.1 for iPhones, according to our website's analytics logs, which have been a consistently reliable indicator of upcoming iOS versions. The software update should be released within the next few weeks. iOS 18.3.1 should be a minor update that addresses software bugs and/or security vulnerabilities. Apple Intelligence notification summaries for news and...
Read Full Article33 comments
iCloud General Feature Redux

'Apple Invites' Leaked on iCloud Website

Tuesday February 4, 2025 7:11 am PST by
Update: The new Apple Invites app has officially been announced. The main iCloud.com page has seemingly confirmed Apple's rumored invites tool, which has yet to be officially announced by the company. The page says "Apple Invites" will be an iCloud+ feature:Upgrade to iCloud+ to get more storage, plan events with Apple Invites, and have peace of mind with privacy features like iCloud...
Read Full Article28 comments
disney

Disney+ Loses 700,000 Subscribers Following Price Increase

Wednesday February 5, 2025 3:34 pm PST by
Disney+ lost 700,000 subscribers worldwide in recent months, according to Disney's earnings results for the first quarter of 2025. Disney said it now has 124.6 million Disney+ subscribers, a decrease of 0.7 million compared to its subscriber numbers in the fourth quarter of 2024. The drop in subscribers comes after Disney+ prices increased in the fall. Disney+ with Ads went from $7.99 to...
Read Full Article172 comments