Investigation: Israeli AppCloud on Samsung Phones

“Do you have a mobile phone? Then you’re carrying a piece of Israel right here.” — Benjamin Netanyahu, boasting about Israeli tech in a recent press conference.

A months-long investigation by Sunna Files Website examines claims that an Israeli application, “AppCloud,” is present on a range of Samsung smartphones—often pre-installed or pushed via system updates—and that users cannot uninstall it. The app, developed by IronSource (Tel Aviv) as part of its Aura platform (now under Unity), has raised serious privacy and data-security concerns, especially across West Asia and North Africa (WANA).

Key Findings at a Glance

App name: AppCloud (part of IronSource Aura).
Where it appears: Commonly on Samsung Galaxy A and Galaxy M devices; present in WANA markets; not found by the team on devices sold in the US or Europe.
How it arrives:
1. Pre-installed on select models at purchase.
2. Installed later, following phone/OS security updates.
Uninstall status: No standard “Uninstall” option on affected devices; at best, users can Disable.
Data concerns: The app (and Aura) can access usage patterns, device info, IP, location, and other identifiers; consent and removal mechanisms are unclear.
Scale (as reported): Aura is embedded in billions of devices globally; internal replies referenced >1.1 billion Samsung devices and activity across 30–50+ markets in MENA.
Official stance: Samsung acknowledges “pre-installed third-party apps” generally and points users to Disable; no comprehensive public statement specific to AppCloud.

What Is AppCloud (and Aura)?

AppCloud is a recommendations layer (games/apps) tied to IronSource’s Aura platform and bundled on some Samsung devices. IronSource created AppCloud, and Unity acquired IronSource in 2022; the Aura business (and leadershi,p including Tomer Bar-Zeev) continues, with Tel Aviv listed as a key hub and hiring location. Aura’s own materials say it is integrated into over 2 billion devices and aims for 4 billion, intensifying scrutiny of privacy and data access at scale.

Where Is AppCloud Showing Up?

Field checks by reporters in Jordan, Egypt, Morocco, Syria, Lebanon, Iraq, and Türkiye found AppCloud present and non-removable on in-store demo units and user-purchased phones—especially Galaxy A and M series (popular, lower-to-mid segment devices).

In Morocco, multiple public-sector employees confirmed receiving Samsung phones with AppCloud pre-installed. Institutions choose their own device suppliers; sources requested anonymity.

Note: The investigation did not find AppCloud on devices sold in the US or Europe during tests.

How to Check If AppCloud Is on Your Samsung

Settings
Apps
Search for: AppCloud (no space)

You’ll typically see no “Uninstall” button (unlike apps such as WhatsApp or X/Twitter). Users on the Samsung Community forums and Reddit also reported the app appearing after security updates, asking how to remove it.

Can You Remove It?

Samsung often categorises AppCloud/Aura as system software or deeply integrated—hence no standard uninstall. Advanced users report removing it via ADB (Android Debug Bridge), but this is unsupported, may void support, and updates can reinstall the package.

Practical Mitigation (Samsung UI)

Settings → Apps → AppCloud → Disable
This reduces activity/visibility but does not delete the app and may revert after major updates.

Samsung’s Replies (From a Regional CEO Office Correspondence)

Presence: Most common on mid/low tiers (Galaxy A/M); some reports of appearance on higher-priced models.
How it appears: May auto-install via system or security updates even if not present at purchase.
Scale: No official public counts; internal references noted Aura/IronSource active in 30+ markets, expanded to 50+ in MENA, and integration on 1.1 billion+ Samsung devices globally.
Why no uninstall? Labelled system/integrated to maintain an “out-of-box” experience; Disable is usually available; Uninstall is generally not.
Privacy posture: Samsung cites general privacy commitments and third-party app policies, but no app-specific public statement addressing AppCloud’s permissions/collection.

Third-Party Apps on Samsung (and Who’s Responsible)

Samsung’s site clarifies that third-party apps may operate independently, with their own cookies, pixels, tracking, and separate privacy policies—and that Samsung isn’t responsible for third-party content or practices. Users are advised to review each third-party app’s privacy policy.

What Data Does AppCloud/Aura Collect?

Sunna Files’ review of IronSource/Unity policies indicates the collection of:

IP address, advertising ID
Self-generated app IDs, developer-scoped IDs
Device information, usage patterns, and potentially location

This data is used for app discovery/recommendations and ad targeting—the very practices that drive ongoing privacy concerns.

GDPR & WANA Privacy Concerns

Under GDPR, consent must be a freely given, specific, informed and unambiguous affirmative act—and withdrawal must be as easy as giving it. Pre-installations without a clear opt-in and without easy removal/withdrawal can conflict with these principles.
In WANA, comparable data-protection regimes vary, but non-consensual pre-installs and opaque data flows remain a red flag for rights groups.

Expert View: Cybersecurity Risks Go Beyond Collection

Ahmed Al-Omari, a cybersecurity professor in Jordan, told local media that pre-installed third-party apps like AppCloud can request broad permissions (e.g., contacts/device lists, usage habits, technical identifiers such as IMEI/phone number, network data, and sometimes location), enabling large-scale metadata and behavioural harvesting.
He warned that the risks stem not only from what is collected, but how it’s processed and shared, and whether any consent was truly informed. He also flagged “bloatware” issues—non-removable software bundled by OEMs/carriers—and noted the EU Right to Object to direct-marketing data processing where applicable.

Crucially for WANA, Al-Omari raised the geopolitical sensitivity of Israeli-made software being pre-loaded on devices sold in Arab and Muslim countries, cautioning that in contexts of war and occupation, the risk calculus cannot be purely commercial.

Why Galaxy A & M Matter

Samsung’s Galaxy A and Galaxy M—targeting value-conscious buyers—are among the top-selling Android lines globally. Industry reporting cited by the investigation notes Q1 2025 momentum and ~89 million A-series shipments, with Samsung aiming to surpass 100 million units in 2025. That scale magnifies privacy exposure when pre-loads are involved.

Background: Israel’s Surveillance Tech Footprint

The investigation situates AppCloud/Aura within a wider Israeli surveillance/export ecosystem, frequently linked to Unit 8200 veterans and Defence Ministry licensing. Examples include:

NSO Group (Pegasus)
Candiru (covert Windows/macOS/Android exploitation)
Cellebrite (forensic data extraction from seized phones)
Toka (IoT exploitation)
AnyVision → Oosto (facial recognition; alleged use in Palestinian surveillance)

Several firms have faced international restrictions and legal actions (e.g., from Facebook and Apple) over alleged abuses.

Relationship Map: Samsung ↔ IronSource/Unity ↔ Aura ↔ AppCloud

2022: Samsung and IronSource announce a partnership around Aura.
2022: Unity acquires IronSource; AppCloud remains an Aura component; leadership continuity claimed.
Today: Aura’s footprint spans billions of devices; AppCloud appears on select Samsung models/markets, with no standard removal path.

What You Can Do Right Now (User Checklist)

Check presence: Settings → Apps → search “AppCloud” (no space).
Disable: Open AppCloud → Disable (stops most activity but does not delete).
Update review: After major updates, re-check if AppCloud reactivated.
Privacy settings: Limit ad personalisation, location, and permissions where possible.
Advanced users: ADB removal exists but is unsupported and may revert.

Ethical & Economic Angle

Pre-installing an Israeli-made data-harvesting layer on devices sold across Arab and Muslim markets—without a clear opt-in or uninstall—raises ethical, political, and economic concerns. Consumers are effectively pushed to use and support a vendor tied to an occupational state, with no meaningful choice. For a region living under surveillance, war, and digital repression, that is not a neutral decision.

Frequently Asked Questions (FAQ)

Q1: Is AppCloud on my Samsung phone?
Check Settings → Apps → search “AppCloud”. If present, you’ll typically see Disable but no Uninstall.

Q2: Can I remove it?
Not via standard UI. You can Disable; ADB removal is possible for advanced users, but unsupported and may reinstall after updates.

Q3: Which models/markets are affected?
Common reports on Galaxy A/M devices in WANA markets; the investigation did not find it on devices in the US or Europe.

Q4: What data does it collect?
Policies reference IP, ad IDs, device/app identifiers, usage patterns, device info, and sometimes location—for recommendations and ad targeting.

Q5: Why can’t Samsung just let users uninstall it?
Vendors often treat it as system software to deliver a curated “ready-to-use” experience. That design choice is central to the privacy debate.

One Ummah. One platform. One mission.
Your support keeps it alive.

Click here to Donate & Fund your Islamic Independent Platform