TutuApp is stealing your Private Data by installing Spyware!

TutuApp’s new tool has been a great success but it also does something that it’s not supposed to do. Here’s how they are stealing your private information.

Coffeebreakerz Dev Team exposes TutuApp

As you already know, TutuApp has begun blocking its two main competitors – AppValley and TweakBox. Upon closer inspection, we find this isn’t the only shady thing it’s doing.

Sem Voigtländer, lead hacker of Coffeebreakerz, has completely exposed TutuApp’s false claims. He successfully reverse-engineered Nesstool Protection utility and verified that this tool is, indeed, spyware.

hacker

Sem also posted several interesting tidbits on Twitter.

Here’s a brief explanation of what this tool actually does, apart from “protecting your apps”.

  • Gather data about your device type.
  • Get all data about installed applications.
  • Check whether or not your device has root access (jailbreak).
  • Access your MAC address.
  • Gather data about your carrier/provider.
  • Gather your location coordinates.

Once you open TutuApp, it will display a popup that will force you to install Nesstool. This is what I experienced before installing their app protection tool on my iPhone 7 plus.

tutuapp spyware

There’s no close or exit button so you will need to install to continue using the installer.

Why are they stealing your data?

Obviously, there has to be some reason behind gathering private user data. They aren’t doing this just for the fun of it.

Thanks to Sem’s analysis, I was able to dig deep and what’s actually going on behind the scenes. They are actually stealing your data and selling it to a Spanish mobile advertising agency, Mobclick.

Here’s the address of the server where they are storing user data – https://alogs.umengcloud.com/app_logs.

ios exploitation

In the information age, data is knowledge and knowledge is power. User data is already extremely valuable and considering most of Tutu users own an iPhone, it makes it even more valuable.

Just so you know, pretty much every browser, social network, and app out there “steals” your data exactly like this.

What does TutuApp have to say?

The team behind TutuApp is still sticking to their version about this whole fiasco.

They are still claiming their tool is completely clean and have categorically denied any and all allegations leveled against them. Here’s what they have to say on the matter.

Remove it asap!

If you are already using this spyware, I suggest removing it as quickly as possible. Who knows what they might do with your data.

You can try out Nesstool for yourself but I wouldn’t recommend doing so for obvious reasons. With that being said, it does block Apple’s servers and keeps your apps running even if their certificate has been revoked.

Do you still support TutuApp or will you delete it as soon as possible? Let us know your thoughts and opinions in the comments section below.

For more security news and updates, follow us on Facebook and Twitter.

28 Comments

  1. Nuggets23 April 7, 2019
  2. Easton March 23, 2019
    • Gian March 24, 2019
  3. Victor March 9, 2019
    • Gian March 9, 2019
  4. Slightly Confused Person October 2, 2018
    • Sid October 2, 2018
  5. Slightly Confused Person October 2, 2018
  6. v September 14, 2018
    • Gian September 14, 2018
  7. Jimmy August 23, 2018
    • Gian August 24, 2018
  8. . August 19, 2018
    • Gian August 19, 2018
  9. Zorkani July 21, 2018
    • iOS Expert July 21, 2018
  10. Sum1 April 17, 2018
  11. Razrblazr March 10, 2018
    • iOS Expert March 10, 2018
  12. PG21 February 27, 2018
    • iOS Expert February 27, 2018
  13. TuTu app hater (after reading this) February 14, 2018
    • TuTu app hater (after reading this) February 14, 2018
  14. Stephen McManus January 29, 2018
    • iOS Expert January 30, 2018
  15. Cristian October 31, 2017
  16. Alberto Sanchez September 27, 2017
    • Luca R September 27, 2017

Leave a Reply

Share via
Copy link
Powered by Social Snap