Back
Technology

FBI Warns Smartphone Users About Data Risks from Foreign-Developed Apps

Generated on: Last updated: 1 sources
View source

FBI Warns U.S. Citizens on Foreign-Developed Mobile App Security Risks

The Federal Bureau of Investigation (FBI) has issued a Public Service Announcement (PSA) advising U.S. citizens to exercise caution when installing foreign-developed mobile applications. This warning, updated with new reports into early 2026, highlights potential data security risks, particularly concerning apps from China that frequently rank among the most downloaded in the United States.

Basis of the Warning

The FBI's concerns primarily stem from China's national security laws, specifically Articles 7 and 14 of its National Intelligence Law. These statutes mandate that organizations and citizens support and cooperate with national intelligence efforts.

This legal framework could compel China-based developers to share user data, mirroring issues previously raised concerning applications like TikTok.

While the FBI has not provided a specific list of potentially risky apps, reports indicate the warning could apply to several widely used applications developed by Chinese firms. These may include:

  • Video-editing platform CapCut
  • Shopping applications such as Temu and SHEIN
  • Social media platforms like Lemon8 and TikTok
  • TikTok Lite and other applications identified as Chinese-built or affiliated

Data and Malware Risks

Foreign-developed applications often request extensive access to user data upon installation. If access is granted, this can lead to the persistent collection of private information from the device. Data at risk includes:

  • Contact lists, which could be used to construct social graphs valuable to state-sponsored or mercenary hacking groups.
  • Names, email addresses, user IDs, physical addresses, and phone numbers.

Some apps reportedly store collected data on servers located in China, and certain platforms may require data sharing as a condition for use, potentially overriding user consent settings.

In addition to data collection, the bureau flags a significant risk of malware. These apps may contain malicious code designed to collect data beyond user authorization, exploit operating system vulnerabilities, or insert backdoors for elevated privileges.

FBI Guidelines for Users

The FBI's advisory is not a blanket prohibition but rather an instruction for users to thoroughly understand app policies before installation. The bureau strongly recommends the following practices to mitigate risks:

  • Install from official stores only: Avoid installing applications from unofficial sources.
  • Review terms of service: Read end-user license agreements before downloading.
  • Disable unnecessary data sharing: Adjust app settings to limit data collection.
  • Update passwords regularly: Maintain strong password hygiene.
  • Perform regular software updates: Keep device operating systems patched.

While the risks associated with sideloading apps are generally higher for Android users due to the platform's openness, iPhone users are also susceptible. Official app stores typically scan for malicious content, significantly reducing the risk of malware.