Invasive Israeli-founded bloatware is harvesting data from Samsung users in WANA Overview In West Asia and North Africa (WANA), there is increasing concern about digital surveillance involving Israeli cybersecurity firms and software. A key case involves AppCloud, a pre-installed application on Samsung’s A and M series smartphones, which is deeply embedded and hard to remove without rooting the device. Key Issues with AppCloud Pre-installed bloatware that cannot be easily uninstalled because it is part of the phone's operating system. Requires root access to remove, which voids warranty and is technically challenging. No publicly accessible privacy policy for AppCloud. Users have no clear method to opt out of its data collection. AppCloud secretly harvests extensive user data, including biometric data and IP addresses. Ownership and Background AppCloud is linked to ironSource, an Israeli-founded company now owned by American firm Unity. ironSource's reputation is problematic: Known for invasive software practices that bypass user consent, such as "Install Core," which installs programs without permission. Subject to criticism and industry pushback, including a collective ultimatum by game developers. Part of a class-action lawsuit over tracking and targeting children with predatory purchases. Often associated with spyware and surveillance technologies. Specific Concerns for WANA Region AppCloud is pre-installed on Samsung Galaxy M and A models in WANA following a 2022 expanded partnership between Samsung MENA and ironSource. Samsung installs this app by default without user consent. Samsung holds around 28% market share in WANA, making this issue widespread. Legal concerns arise because Israeli firms are barred from operating in several WANA countries, including Lebanon. Countries like Egypt, UAE, and Saudi Arabia have strong data protection laws requiring explicit consent and transparency, potentially violated by AppCloud. Transparency and Control Issues AppCloud is not visible in the app menu, making its terms and privacy inaccessible. Samsung's general terms mention third-party apps but do not explicitly disclose AppCloud or ironSource. No consistent display of AppCloud's privacy terms or an opt-out option. Users can attempt to disable the app via settings, but it may re-enable after system updates. Full removal requires rooting the phone, which is difficult and voids warranty. Calls to Action Samsung should immediately stop pre-installing AppCloud on M and A series smartphones in WANA. Samsung should make AppCloud's privacy policy accessible and provide an easy opt-out mechanism. The app's data collection likely violates regional data privacy laws and the legal restrictions on Israeli companies. Users are advised to disable AppCloud if possible and be aware of the privacy risks. --- About the Author Ryan Yunis is a researcher at SMEX focusing on digital rights. He appreciates good coffee and reading with his dog Chewie. --- Related Links ironSource website: https://www.is.com/ Unity acquisition of ironSource: Unity news MalwareBytes Install Core analysis: MalwareBytes Sophos Install Core analysis: Sophos Collective ultimatum to Unity by developers: PocketGamer Data protection laws referenced: Egypt: [ILO Natlex