Samsung, the South Korean tech giant, is embroiled in a global controversy as users and cybersecurity experts raise alarms over pre-installed bloatware on its devices. The software in question, AppCloud, initially reported in Samsung Galaxy A and M series phones in West Asia and North Africa, has now been found in devices across Europe and South Asia. Users claim the app is unremovable without root access, the highest level of system control, raising significant privacy and ethical concerns.
AppCloud, linked to the Israeli firm ironSource, has been accused of secretly harvesting user data and lacking a transparent privacy policy. IronSource, now owned by American company Unity, has a notorious history of creating invasive programs that bypass user permissions and security checks. Despite being disabled, AppCloud persists on devices, reappears after updates, and can covertly install additional software.
Digital rights organization SMEX has highlighted these issues, noting that Samsung’s terms of service fail to address AppCloud or ironSource explicitly. In May, SMEX sent an open letter to Samsung, but the company has yet to respond. The issue has gained traction online, with users sharing screenshots of AppCloud’s extensive permissions, including full network access and the ability to download files without notification.
Cybersecurity experts warn that while AppCloud’s behavior doesn’t confirm it as classic spyware, its aggressive data collection and unremovable nature blur the line between ad-tech and surveillance. As the controversy grows, Samsung faces mounting pressure to address these privacy concerns and provide users with greater control over their devices.