Apple Removes Some Ad Blockers From App Store for Installing Root Certificates - MacRumors
Skip to Content

Apple Removes Some Ad Blockers From App Store for Installing Root Certificates

by

appstoreApple tonight removed some ad blockers, among other apps, from the App Store for installing root certificates that would allow developers to view encrypted traffic from their users, reports iMore. In a statement provided to the publication, Apple said it was working with developers to get the apps back into the App Store.

Apple is deeply committed to protecting customer privacy and security. We’ve removed a few apps from the App Store that install root certificates which enable the monitoring of customer network data that can in turn be used to compromise SSL/TLS security solutions. We are working closely with these developers to quickly get their apps back on the App Store, while ensuring customer privacy and security is not at risk.

With iOS 9, Apple allowed developers to create content blockers that would block ads on websites in Safari. Some ad blockers were removed because they could use the installed root certificates to view customer data passing through them. However, iMore notes that the ad blockers removed from the App Store are slightly different than the content blockers Apple enabled with iOS 9.

The ad blockers removed from the App Store block ads and other content inside apps by "exposing all your private Internet traffic to the blocker," according to iMore. The apps are set up in a way that allows a user's traffic to flow through the developer's servers to perform the content blocking. One of the apps that has been removed is Been Choice, who notes that they will resubmit their app tomorrow with the necessary changes.

While Apple has enabled developers to create content blockers for Safari, it currently has no systems in place to allow developers to block content within apps.

Top Rated Comments

btrach144 Avatar
btrach144
138 months ago
Where is the list of removed apps???
Score: 6 Votes (Like | Disagree)
8
8012R3
138 months ago
Apple should not be allowing these developers back in to the App Store.
Score: 6 Votes (Like | Disagree)
mw360 Avatar
mw360
138 months ago
Can we have a review with recommendations for safe ad blockers in iOS. The changes in iOS 9 have left very muddied waters, let alone with apps being launched and then pulled by the developer or Apple.

Mess. Mess. Mess.
This isn't the mess it appears to be.

iOS9 introduced ways to block ads which didn't compromise privacy. The old ad blockers which used insecure methods have been now been pulled and/or updated. End of story.

Oh, one developer pulled his safe ad blocker because he felt bad about it.
Score: 5 Votes (Like | Disagree)
MacHiavelli Avatar
MacHiavelli
138 months ago
Can we have a review with recommendations for safe ad blockers in iOS. The changes in iOS 9 have left very muddied waters, let alone with apps being launched and then pulled by the developer or Apple.

Mess. Mess. Mess.
Score: 5 Votes (Like | Disagree)
R
Rigby
138 months ago
What happened is that some of the adblockers installed their own root certificate, so they could perform what resembles a man-in-the-middle attack on user's SSL-encrypted traffic. Installing a root certificate enables the proxy at the remote end of the VPN to replace the original encryption keys offered by an HTTPS web site with their own, without the user having any way of detecting this. After replacing the keys, they can see all the user's SSL-encrypted traffic (potentially including things like passwords entered in banking apps etc.).

Even if we assume this was well-intentioned (i.e. the adblocker dev only wanted to make sure that adblocking works on encrypted sites/apps too), this is a very dubious proposition, as most non-technical people won't expect this. At the very least the blocker needs to make it very clear to the user that their end-to-end encryption is being broken.

It's worth repeating that this issue does *not* affect bockers that use the new iOS 9 content blocker mechanism, such as the ones listed in the first post in this thread:

https://forums.macrumors.com/threads/the-ios-9-content-blocker-thread.1916783/
Score: 4 Votes (Like | Disagree)
0815 Avatar
0815
138 months ago
i need something to block Iads.
I only dont like bad intrusive ads that are in your face, like the admob/ Google garbage that is forced full screen with auto play videos in your face after every short game play. iAd on the other hand just sits there without annoying me and allows me to get free apps - I even click on them in support of very good games.
Score: 4 Votes (Like | Disagree)
Read All Comments

Popular Stories

Apple Event Logo

Apple Just Released a New Accessory

Monday May 4, 2026 8:13 am PDT by
Apple today released a new Pride Edition Sport Loop for the Apple Watch. The band features a rainbow design with 11 colors of woven nylon yarns. The new Pride Edition Sport Loop is available to order now on Apple.com and in the Apple Store app in 40mm, 42mm, and 46mm sizes, and it will be available at Apple Store locations starting later this week. In the U.S., the band costs $49. There...
Read Full Article
iOS 26

Apple Says iOS 26.5 Adds Three New Features to Your iPhone

Tuesday May 5, 2026 7:36 am PDT by
iOS 26.5 includes three new features for iPhones, according to Apple's release notes for the update, which is expected to be released next week. As discovered during beta testing, iOS 26.5 enables end-to-end encryption for RCS messaging between iOS and Android devices. Apple says this security upgrade is limited to supported carriers around the world and will continue to roll out....
Read Full Article27 comments
Instagram Feature 2

PSA: Instagram Encrypted Messaging Ends on Friday, May 8

Tuesday May 5, 2026 8:24 am PDT by
Instagram will remove end-to-end encryption for direct messages between users from May 8, 2026. When the date comes around, Meta will potentially be able to see the contents of all messages between users on the social media platform. Encrypting messages has been an optional feature in Instagram since 2023, but in March of this year the social media platform quietly updated a help page to say ...
Read Full Article54 comments