NewsletterTFApr 4

White House App Raises Eyebrows Over Data Sharing and Russian-Founded Software

Concerns grow over the White House app sharing user data with third parties and using Russian-founded software. Find out what this means for your privacy.

#WhiteHouseApp, #DataPrivacy, #CyberSecurity, #RussianSoftware, #AppVulnerabilities

https://newsletter.tf/white-house-app-data-sharing-russian-software/

NewsletterTFApr 4

The White House app shares user data with third parties and uses software from a company founded in Russia. This is a big change from what users expect.

#WhiteHouseApp, #DataPrivacy, #CyberSecurity, #RussianSoftware, #AppVulnerabilities
https://newsletter.tf/white-house-app-data-sharing-russian-software/

White House App Shares Data With Russian-Founded Software

Concerns grow over the White House app sharing user data with third parties and using Russian-founded software. Find out what this means for your privacy.

NewsletterTF
Voteinorout 🇺🇸Apr 1

The White House now has an app. It promises “content straight from the source” and live updates direct from the administration. The president is calling it transparency.
Privacy experts are calling it something else. #whitehouseapp

Experts say the app requests access to your precise location, network connections, biometric data, and the ability to modify or delete files on your phone. One develop... https://instagr.am/p/DWmCNeqRPXE/

voteinorout on Instagram: "The White House now has an app. It promises “content straight from the source” and live updates direct from the administration. The president is calling it transparency. Privacy experts are calling it something else. #whitehouseapp Experts say the app requests access to your precise location, network connections, biometric data, and the ability to modify or delete files on your phone. One developer found it pings your GPS every 4.5 minutes and sends that data to a third-party server. It also contains embedded trackers from Huawei Mobile Services Core — a company the U.S. government has previously sanctioned. Oh, and you can use it to report someone to ICE. And “text Trump” — which means handing the administration your personal contact information. The White House says it’s transparency. What it actually does is collect a significant amount of data about you and send it to places you didn’t choose. Worth knowing before you download. Follow @jessicayellin for more. Help this information get to more voters. 🇺🇸 A well-informed electorate is a prerequisite to Democracy.—Thomas Jefferson"

36 likes, 7 comments - voteinorout on March 31, 2026: "The White House now has an app. It promises “content straight from the source” and live updates direct from the administration. The president is calling it transparency. Privacy experts are calling it something else. #whitehouseapp Experts say the app requests access to your precise location, network connections, biometric data, and the ability to modify or delete files on your phone. One developer found it pings your GPS every 4.5 minutes and sends that data to a third-party server. It also contains embedded trackers from Huawei Mobile Services Core — a company the U.S. government has previously sanctioned. Oh, and you can use it to report someone to ICE. And “text Trump” — which means handing the administration your personal contact information. The White House says it’s transparency. What it actually does is collect a significant amount of data about you and send it to places you didn’t choose. Worth knowing before you download. Follow @jessicayellin for more. Help this information get to more voters. 🇺🇸 A well-informed electorate is a prerequisite to Democracy.—Thomas Jefferson".

Instagram
N-gated Hacker NewsApr 1
🚨 Breaking news! 🚨 White House app sends 77% of requests to third-party servers! 🤯 Who could have guessed that an app from the people who can't even implement basic security measures might be a bit... leaky? 🌧️ Meanwhile, the other 23% of requests were likely just the app trying to phone home in tears. 📞💧
https://www.atomic.computer/blog/white-house-app-network-traffic-analysis/ #WhiteHouseApp #DataPrivacy #SecurityBreach #ThirdPartyServers #LeakyApp #BreakingNews #HackerNews #ngated
We Intercepted the White House App's Network Traffic. Here's What It Sends.

We set up a MITM proxy and captured the decrypted HTTPS traffic from the official White House iOS app. On a single browsing session it contacts multiple Elfsight domains, sends your device fingerprint to OneSignal, and loads Google DoubleClick ad tracking. The privacy manifest says it collects nothing.

atomic.computer
Hacker NewsApr 1

We intercepted the White House app's traffic. 77% of requests go to 3rd parties

https://www.atomic.computer/blog/white-house-app-network-traffic-analysis/

#HackerNews #WhiteHouseApp #TrafficAnalysis #SecurityPrivacy #ThirdParties #DataIntercepted

We Intercepted the White House App's Network Traffic. Here's What It Sends.

We set up a MITM proxy and captured the decrypted HTTPS traffic from the official White House iOS app. On a single browsing session it contacts multiple Elfsight domains, sends your device fingerprint to OneSignal, and loads Google DoubleClick ad tracking. The privacy manifest says it collects nothing.

atomic.computer
Techdirt [Unofficial]Mar 30

The White House App’s Propaganda Is The Least Alarming Thing About It

https://fed.brid.gy/r/https://www.techdirt.com/2026/03/30/the-white-house-apps-propaganda-is-the-least-alarming-thing-about-it/

The White House App’s Propaganda Is The Least Alarming Thing About It

Call me crazy, but I don’t think an official government app should be loading executable code from a random person’s GitHub account. Or tracking your GPS location in the background. Or …

Techdirt
Ravishka MadhushanMar 30

The White House app tracks your GPS every 4.5 minutes. The App Store privacy label says it collects nothing.

A researcher decompiled the APK and found 10+ analytics frameworks, SMS harvesting, JavaScript injected into pages you browse, and a remote toggle for location tracking via OneSignal, no app update required, no Apple review, no user consent.

No certificate pinning. Debug artifacts left in the production build. Privacy policy last updated January 2025, before the app existed.

🖼 The first image was generated using AI for illustrative purposes.

Source: https://blog.thereallo.dev/blog/decompiling-the-white-house-app

#Privacy #DataPrivacy #InfoSec #WhiteHouseApp #DigitalRights

Show threadEhay2kMar 30

@somebitslinks @briankrebs @GossiTheDog

BTW, my fave tidbit is this:

"If the lonelycpp GitHub account gets compromised, whoever controls it can serve arbitrary HTML and JavaScript to every user of this app, executing inside the WebView context."

IF?? You can be sure already that this is WHEN.

#WhiteHouseApp #cybersecurity #somedudecoding

Ravishka MadhushanMar 30

The White House app tracks your GPS every 4.5 minutes. The App Store says it collects nothing.

A developer decompiled it: 10+ analytics frameworks, SMS harvesting, JS injected into pages you browse, remote location toggle via OneSignal, no consent needed.

No cert pinning. Debug artifacts in production. Privacy policy from Jan 2025, before the app launched.

Source: https://blog.thereallo.dev/blog/decompiling-the-white-house-app

🖼 The first image generated using AI.

#Privacy #DataPrivacy #News #WhiteHouseApp #DigitalRights

Hacker NewsMar 28

I decompiled the White House's new app

https://thereallo.dev/blog/decompiling-the-white-house-app

#HackerNews #I #decompiled #the #White #new #app #decompiling #WhiteHouseApp #technews #hackernews #appdevelopment

I Decompiled the White House's New App

The official White House Android app has a cookie/paywall bypass injector, tracks your GPS every 4.5 minutes, and loads JavaScript from some guy's GitHub Pages.

Thereallo