Sign Up
All SecurityCyber-crimePatchesResearchCSO
All Off-PremEdge + IoTChannelPaaS + IaaSSaaS
All On-PremSystemsStorageNetworksHPCPersonal TechCxOPublic Sector
All SoftwareAI + MLApplicationsDatabasesDevOpsOSesVirtualization
All OffbeatDebatesColumnistsScienceGeek's GuideBOFHLegalBootnotesSite NewsAbout Us

Security

Russian FaceApp selfie-slurper poses 'potential counterintelligence threat', FBI warns

Feds tell senator that age-filter toy a possible security risk

Shaun Nichols in San Francisco Tue 3 Dec 2019  //  00:34 UTC

Netizens who fire up FaceApp for fun may be unknowingly putting national security at risk, according to the FBI.

In a recent letter (PDF) to US Senator Charles Schumer (D-NY), the Feds said the Russia-based face-aging tool released to much fanfare this past summer could conceivably be used by the Kremlin for intelligence.

"The FBI considers any mobile application or similar product developed in Russia, such as FaceApp, to be a potential counterintelligence threat, based on the data product collects, its privacy and terms of use policies, and the legal mechanisms available to the Government of Russia that permit access to data within Russia's borders," wrote Jill Tyson, assistant director of the FBI's office of congressional affairs.

Back when the app first hit it big in July of this year, there were questions about the way FaceApp handled the images users submitted to the service. FaceApp has countered that it only briefly collected the images (usually for less than 48 hours) for its internal testing and no data is actually stored in Russia.

Still, the FBI says, the broad terms of service, combined with the FSB's ability to directly pull data from any Russian ISP, mean that people who use the service could unwittingly be providing the Kremlin with intelligence.

Tempted to play with that Chinese Zao app for deep-fake frolics? Don't bother if you want to keep your privacy

READ MORE

"If the FBI assesses that elected officials, candidates, political campaigns, or political parties are targets of foreign influence operations involving FaceApp, the FBI would coordinate notifications, investigate, and engage the Foreign Influence Task Force, as appropriate," Tyson said.

The FBI's letter was in response to a request Schumer issued back in July asking both the Bureau and the FTC to look into FaceApp, noting that "it would be deeply troubling if the sensitive personal information of US citizens was provided to a hostile foreign power actively engaging in cyber hostilities against the United States."

Upon posting the FBI letter on Monday, Schumer said those fears were validated.

"This year when millions were downloading #FaceApp, I asked the FBI if the app was safe," Schumer tweeted.

"Well, the FBI just responded. And they told me any app or product developed in Russia like FaceApp is a potential counterintelligence threat." ®
Send us news
18 Comments

US legislators propose American Privacy Rights Act - and it looks quite good

After two decades of calls for national protections, something may actually happen

Academics probe Apple's privacy settings and get lost and confused

Just disabling Siri requires visits to five submenus

Reform of USA's Section 702 spying rule may make it to a vote this week

Tool that lets spooks observe Americans appears to have been renewed for another year

96% of US hospital websites share visitor info with Meta, Google, data brokers

Could have been worse – last time researchers checked it was 98.6%

Google will delete data collected from 'private' browsing

Declares victory in settlement of class action lawsuit, but individual claims remain possible

Ex-Microsoft engineer gets seven years after trying to hire hitman for double murder

Hint: If someone says they're an assassin on the dark web, they're probably not

Head of Israeli cyber spy unit exposed ... by his own privacy mistake

Plus: Another local government hobbled by ransomware; Huge rise in infostealing malware; and critical vulns

Ex-White House CIO tells The Reg: TikTok ban may be diplomatic disaster

Theresa Payton on why US needs a national privacy law

Lawsuit claims Meta hobbled Facebook Watch to help Netflix

Advertiser antitrust lawsuit says claimed deal with Netflix is anticompetitive

AT&T admits massive 70M+ mid-March customer data dump is real though old

Still claims the personal info wasn't stolen from its systems

US sanctions spree continues with 15 more for Russian entities

Financial firms that help evade existing restrictions in crosshairs

Uncle Sam's had it up to here with 'unforgivable' SQL injection flaws

Software slackers urged to up their game