AppXpose v6.9.1 / file 001

GET IT ON JETZT BEI Google Play

MEDIUM Risk · Score 52/100

X (Twitter)

com.twitter.android

X (Twitter) is a major social media platform with significant data collection practices, including extensive behavioral tracking, location data harvesting, and ad ecosystem integration. While the app uses HTTPS encryption, the backend data sharing, lack of end-to-end encryption for DMs, and aggressive monetization create moderate privacy risks.

52

out of 100

9

Trackers Found

3

Dangerous Permissions

8

Risk Factors

1

Known Breaches

Warning

Data Breach: Twitter

2022-01-01 · 5,400,000 accounts affected

In 2022, 5.4 million X (Twitter) user records were exposed due to an API vulnerability, linking email addresses and phone numbers to accounts.

Email addressesPhone numbers

Regulatory & Legal

2022 data breach exposed 5.4M user email addresses and phone numbers. 2023 API abuse allowed unauthorized data scraping. Ongoing concerns about post-acquisition privacy governance.

Score Breakdown

How we got to 52.

Scored using deterministic pattern matching and DEX analysis. Compare against research data from 3,745 analyzed apps.

+12

Behavioral tracking and analytics SDKs

Firebase, Mixpanel, Segment, and proprietary telemetry track engagement and content consumption

+11

Ad network integration

AdMob, AppLovin, and historically Meta Audience Network enable cross-app profiling

+9

Data retention and third-party access

User data retained indefinitely; shared with law enforcement and business partners

+8

Location data collection

GPS and IP-based location for ad targeting and trending topics

+7

Unencrypted direct messages

DMs are not end-to-end encrypted - X servers can access content

+6

Aggressive monetization

X Premium paywall with countdown timers and algorithmic suppression of free posts

+5

Ownership and governance changes

Privacy team reductions since 2022; transparency reports less frequent

-5

Transparent privacy policy and GDPR

Detailed privacy policy, GDPR data subject rights, Data Download tool

Trackers

9 SDKs detected

Hidden inside the code.

Firebase Analytics Analytics

Firebase Crashlytics Crash Reporting

Google AdMob Advertising

AppLovin Advertising

Adjust Attribution

AppsFlyer Attribution

Mixpanel Analytics

Segment Analytics

X Telemetry Analytics

Permissions

3 flagged

What it asks for.

medium

ACCESS_FINE_LOCATION

Precise GPS for location-targeted ads and trending topics

medium

READ_CONTACTS

Contact list uploaded as hashes for friend discovery

medium

CAMERA & RECORD_AUDIO

Required for Spaces and video posting, but increases data surface

Related

Keep reading.

The spyware detection ritual is broken

Standard spyware detection advice misses the point. The real surveillance on your phone is already installed, sold as fe...

What trackers are actually hiding in your apps

We scanned 32 of the most-installed Android apps and counted every embedded tracker SDK. The average app hides 5 tracker...

Also scan

Similar risk profiles.

Adobe Acrobat 52

7 trackers · 5 permissions

9 trackers · 4 permissions

9 trackers · 5 permissions

Scan X (Twitter) yourself.

Get the full report on your device - with real-time DEX analysis, permission auditing, and breach monitoring. Free, no account needed.

GET IT ON JETZT BEI Google Play View all scans