If you allow applicati access to the MacOS home directory, even if it is a Mac App Store applicati, you have to think twice about it. It seems that we are watching the trend of the Mac App Store applicati, and seems to be giving the user access to the user's home directory, such as virus scan and cache cleanup. Browsing history – to the analysis server.
Today, we are talking specifically about applicatis distributed by "Trend Micro, Inc." including Dr. Unarchiver, Dr. Cleaner and others. This problem was previously reported by users the Malwarebytes forum and other reports. Other researchers followed Applicatis distributed by "Trend Micro, Inc." the Mac App Store were found to collect user's browser history and upload it from Safari, Google Chrome, Firefox to the server. In additi, informati other applicatis installed in the system will also be collected. All this informati is gathered at applicati launch, a zip file is created and uploaded to the developer's server.
At least I could see these reports in the Dr. Unarchiver applicati. After unpacking the zip file with this applicati, we provided the opti of "Clean Clean Junk File". When "Scan" is selected, the open diaApple: which the home directory is selected is displayed, and the applicati accesses the user's home directory necessary for collecting the history file from the browser. After allowing access to the home directory, the applicati collected private data and uploaded it to the server (blocked with proxy). Scroll down to see the screenshot.
Examining the archive of the applicati and the upload file to that server is complete …