Slashdot Mirror

← Back to Stories (view on slashdot.org)

iTunes is Malware?

Posted by ScuttleMonkey on from the but-not-if-apple-does-it dept.

Moby writes "On the heels of the big Apple love-in that is Macworld comes some interesting but alarming news. Recently a few blogs have started to indicate that iTunes is tracking your music preferences and using that data to recommend other songs from iTMS. The article provides a good overview, with some recommendations of its own. Basically, iTunes is tracking your music and sending the data back to Apple servers. This info is then used to advertise songs that may be to your tastes. A convenient feature, perhaps, but it raises concerns over privacy."

15 of 779 comments (clear)

  1. Big Brother and the iTunes Company by eldavojohn · · Score: 3, Interesting
    All companies want to market their products to you as effectively and automatically as possible. With the sudden rise in data mining tools such as this, what's a big corporation to do but hop on the bandwagon?

    You may remember that Amazon even patented a similar technique. And I've always suspected my local grocery store of profiling me. Afterall, I hand them a little tag on my keychain for my discount, they scan it and suddenly my name is on the reciept. I'd be naive to think they aren't generating statistics about me and secretly making note that I buy far more long grain wild rice than the average consumer.

    So what's the problem here? The problem is that I don't like it. I don't want a computer program diagnosing me at a hospital even if it is built on solid Bayesian probability models and I don't want a profile of my musical tastes being generated on a company's database. My taste in music is my business and I don't want other people knowing that my most listened to album is Tom Dooley and Other Hits by The Kingston Trio.

    All I've learned from this is that a big company is a big company whether it's Microsoft, Sony, Apple or Google.

    From the article:
    Apple has overstepped its limits, and this spyware (because it sends information to a server) and adware (because it displays information to attempt to sell you products) is a very serious breach of the trust I have long had in Apple's products.
    Oh, come now, you're telling me you've trusted Apple? What has Apple done to gain your trust? They're a profitable corporation and that's where their interests lie. How to get the moneys from your hands to theirs as efficiently as possible.

    The only thing that makes me sad about this is that local bands still lose out because I doubt they'll ever make recommendations unless tens of thousands of users are showing that association. I wish Apple would make a service called halfTunes that sold songs at 50 or 25 or free for bands that are looking for exposure, not profits.
    --
    My work here is dung.
    1. Re:Big Brother and the iTunes Company by Jboy_24 · · Score: 5, Interesting

      I once signed my real name and number on one of those, and I got zilch that I could tell was from filling it out. No mail, no phonecalls ... nothing.

      But as I've read more about the grocery store industry I'm thinking more and more that those 'club' cards aren't much about tracking consumers as in identifying the gross number of unique shoppers that use the club card.

      The reason being, is that the way grocery stores work is a little counter-intuitive. You would think that some shopper for safeway goes out, finds some variety of products , then places them on the shelves in such a way that the more profitable are chest level.

      The actual mechanics are much more complex. Food suppliers will actually pay money to have their products on the ends of the isles, in the best position on the space. I'm pretty sure there's a little buying and selling on the part of Safeway, but I suspect the real situation is more like the suppliers are renting the space out to put their products on.

      The store brand then is the way the store makes money on the actual product not on just the shelf space.

      Therefore, the club cards are something that safeway charges for. Products become club specials, not when safeway finds a crate going bad, or found a good deal, but when the supplier pays safeway to put them on the club. So, Safeway really doesn't care about the information behind the card, (My last couple of club cards I got, they just handed me a new card, I didn't have to fill out anything). All safeway cares about is how often the card is used, so they can tell their suppliers how great it would be if they put their products on the club card.

    2. Re:Big Brother and the iTunes Company by squidfood · · Score: 4, Interesting
      Appearently you're not reading enough into it. It clearly states, as you can see from my bolding above that it says "while you're browsing YOUR OWN MUSIC".

      I've bought about 10 songs from the iStore, but have about 3000mp3s in my iTunes. The recommendations I've gotten are pretty obviously from those 10 songs I bought. Don't know if they know about my 3000mp3s, but they're not making recommendations from it right now.

    3. Re:Big Brother and the iTunes Company by lordholm · · Score: 3, Interesting

      "They can defuse this whole situation simply by adding a checkbox to iTunes, to only enable this invasive feature at the user's request."

      Edit->Hide mini store
      Although you have to do that explicitly.

      --
      "Civis Europaeus sum!"
    4. Re:Big Brother and the iTunes Company by dubiousmike · · Score: 4, Interesting

      I use Little Snitch on OS X which monitors applications trying to go out over the network and asks what I want to do about it before it will let the app do its thing. From what I can see, Itunes uses port 80 to do its thing. With Little Snitch I could make a rule to not let Itunes do this, but this would disable the itunes store. Not that I use it anyway after they expired all of my free pepsi points without warning...

  2. So what? by Tyger · · Score: 4, Interesting

    So? BFD. Certainly there are cases where privacy is a concern, and companies are harvesting personal data for ill gains. But is this really one of them? Calling it malware makes it sound like Apple was so sinister. It's no worse than Amazon tracking your purchase habbits and using it to suggest what other shoppers must buy, or the fact that you have to register with CDDB now, so they could potentially track what music you listen to. Of course the article doesn't even offer proof that the data is even retained by Apple, nor that there it is directly associated with your personal information. It could just be using the immediately selected song to suggest similar music, not a full history.

    And what exactly sinister use will Apple have for this horribly damaging data, anyway?

    Plus, it's so easy to disable. Get over it already.

  3. So What? by tedgyz · · Score: 4, Interesting

    I'm all for privacy, but this doesn't seem terribly unreasonable. Nobody bitches about Amazon customizing their storefront based on past purchases. Well, maybe they do, but I don't hang around with tinfoil-hat-types.

    My point is that every time I go to the iTunes music store, I think, "Gee, wouldn't it be cool if the store knew about my collection and taylored the site to my tastes. I really don't care to see the latest offering from Kelly Clarkson.

    I guess the ideal thing would be if I were given a choice. I didn't see any mention of that in the article. To me, that would be one way to satisfy both crowds. I guess I'll have to fire up iTunes and see if I'm being "watched".

    --
    "No matter where you go, there you are." -- Buckaroo Banzai
  4. Re:Extremely easy to disable, and more info by daveschroeder · · Score: 4, Interesting

    Then it should be disabled by default or you should be asked (in plain English) if you want it enabled when the program starts for the first time after update. If you say no it shouldn't ever ask you again nor should it track your listening preferences.

    You don't know that it's "tracking" anything, even now.

    On the other hand, we don't know it's not doing that, since Apple doesn't tell us.

    No. Absolutely not.

    It's never ok for an external entity to attempt to match things to your interests? Okay, possibly a different philosophical outlook on things, here...

    Especially when they didn't ask my permission first.

    Agreed. But, as I said, it's not exactly a secret that it's doing something to be able to actively change the MiniStore display.

    Sure, Apple's trying to sell something. But it can also be argued, correctly, that this improves the user experience with iTunes (aside from the broader privacy argument). I do, however, agree that Apple should have made this clearly known on the first launch, and given an option at the same time to simply disable it.

  5. Ok, seriously! by Rantastic · · Score: 3, Interesting
    Lets be real here. It is not like iTunes is sending my personal information to Microsoft! This is Apple. Cudly and sweetest computer company of all.

    In all seriousnes I will check the eula when I get home, but I bet there is something in there when you install a new version. On top of that, it only happens when you have the MiniStore open. The whole point of the MiniStore is to offer you music you might like. How else should it work?

    --
    Ask Slashdot: Where bad ideas meet poor googling skills.
  6. You actually want this to happen by chriss · · Score: 3, Interesting

    What happens: iTunes sends a request to the music store if you click on a track in your iTunes Library. It displays the recommendations it received based on the track you clicked in a mini store below the library. If you dislike this, press COMMAND-SHIFT-M ( Edit > Hide MiniStore).

    Is this spyware? I think the definition as used in the article is ways to broad:

    spyware (because it sends information to a server) and adware (because it displays information to attempt to sell you products)

    My definition would include "without my consent and without me being able to turn if of". Maybe yours would be "without asking me BEFOREHAND".

    The main problem is that we are developing a lot of technology that allows us to personalize any kind of service. This has been impossible in the past, but with the establishment of the web as data infrastructure and database driven applications on web servers accessing data from millions of users at a time, this all changed. I think we have to change the way we think about this and whom to blame.

    I'm somewhat paranoid about my data, e.g. I only pay cash to leave no trace. On the other hand I LOVE amazons recommendation system and am very willing to give them informations not only about what I buy, but also about what I might buy. [But I wouldn't search amazon for the "Anarchists handbook" or "DIY pipe bombs" without deleting my cookies first.]

    We're just at the beginning of the massive use of personalization. Wait a couple of years and someone will convince you with a service that requires tracking you via GPS 24h/day. The old idea of "minimal data collection" simply will not work. But 1984 wont happen either. We will get used to leaving data tracks everywhere. [One thing that really scared me was AT&Ts patent to read the RFID tags in your trash can to find out about your consumption habits.] It will happen because it is so convenient. Like gene modified fruit or gene therapy. Resistance is (basically) futile, though often worth a try.

    Our main focus should be to push society into handling this wisely, if it cannot (or should not) be stopped. So push for privacy laws that do not simply allow or prohibit collecting data, but which clearly define who may access the data, what they may do with it, in which ways they have to inform you about it.

    Control what is done with your data, not if it exists at all.

    Chriss

    --
    memomo.net - brush up your German, French, Spanish or Italian - online and free

    --
    memomo: free web based language trainer DE-EN-ES-FR-IT
  7. Maybe this will improve their selection? by SpaceAdmiral · · Score: 5, Interesting

    I want them to track my music listening habits. Maybe if they notice the bands I listen to, they will make deals to distribute music from Epitaph and Fat Wreck Chords artists. . . 'cause currently iTunes have almost nothing I want to listen to.

  8. Re:OMG! by javaxman · · Score: 4, Interesting
    You know if this was Sony or Microsoft there would be howls of anger and the pitchforks and torches would already be out. Apple does it and; "hey, they're swell guys but I don't know how comfortable I am about this".

    Yea, I'm about as worried about Apple knowing my musical tastes as I am about Amazon knowing my reading preferences. As in... not at all.

    If you're the type that's worried about Amazon and Google tracking you with cookies and such, then yea, it's nice to know about this ( and the fact that they don't track you when the mini-store is hidden ). I guess I'm just not that paranoid... I'm actually quite happy to tell everyone what kind of music I like. I'd even tell you, if I thought you wanted to know.

    I'm frankly much more paranoid about Google keeping records of my searches and gmail messages, but even that... I mean, if you use credit cards, Apple knowing your music preferences is the least of your worries.

  9. Stupidity vs. Malice by Daedala · · Score: 3, Interesting

    Apple screwed up: this is unquestionably spyware, because it's not clear before you install that this is going on, it was slipped into a regular update, etc. I'm definitely a Maccy, but I won't serve as an apologist for this. It's wrong. Period.

    That said, it doesn't appear to be malicious. It's very easily turned off and that doesn't seem to disable any function that isn't directly related. They're not hiding what they're doing as they do it.

    I'd chalk this up to stupidity and poor communication. It doesn't seem like they were really trying to hide anything, just that they didn't think, "Hey, maybe I should be extra-specially-clear and disclose this." The tech people weren't talking to the marketing people; what a shock.

    I'd hope for a quick mea culpa and clarification of the service. Perhaps, when you start the updated iTunes for the first time, a dialogue box could pop up and say, "Hi! Want me to tell the iTMS what song you're playing? Then I can make recommendations for you! [Yes] [No] [Bite me]"

    --
    What I say does not represent the views of my employers, my friends, my cats, or myself.
  10. Didn't read the EULA, huh? by Medievalist · · Score: 3, Interesting

    For those who don't know: The iTunes EULA is outrageously broad, and basically grants permission to Apple and several other companies to do anything they damn well please - including re-writing the entire EULA without notification or consent.

    That's why my mac has no iTunes. That's why the corporation I work for does not allow versions of Quicktime that include iTunes.

    Incidentally, I've been roundly flamed (and even made people's /. foes list) for pointing out that I, personally, am unwilling to enter such an open-ended contract.

    Perhaps I have blasphemed the mac religion by reading an Apple EULA. I fully expect this post to be modded troll and flamebait, although it is intended as neither.

  11. They do track you... by camusflage · · Score: 4, Interesting

    Grocery stores can, and DO, track individual purchases. Recently, a fire fighter was suspected in an arson because his card had shown as purchasing the accelerant used in the fire. It wasn't until someone else confessed that he was cleared. The DEA has subpoenaed records looking for people purchasing large numbers of baggies. A large grocery store, in the aftermath of 9/11, turned over to the FBI their entire loyalty database of purchases and purchasers, without so much as a subpoena, to "help find and fight terrorists."

    --
    The truth about Scientology, Xenu, and you: Operation Clambake