In early 2025, Apple confirmed the removal of 137,000 apps from its EU App Store in line with new Digital Services Act (DSA) requirements. This is only a fraction of a bigger global clean-up.

In 2024 alone, both tech giants deleted nearly four million apps combined, a digital purge that many users never notice. Android dominates the global mobile OS market with a 72% share, while iOS accounts for 27% (Statcounter, July 2025). 

With billions of users relying on Google Play and the App Store daily, the sheer volume of takedowns reveal how broad the issue is.

Google was the lead here, removing about 11,000 apps every single day, mostly due to privacy and security breaches. According to its Transparency Report, 55% of these removals were linked to privacy and data protection violations, 16% to ineligible content, 15% to defective data, and 9% to scams or fraud. 

Apple, in contrast, averaged 200 removals per day, with most linked to outdated software (51%) or fraudulent activity (46%).

“It’s a staggering digital purge that goes unnoticed by the public. While it may create the illusion that every app we download is safe, the reality is a bit more complex,” said Sarunas Sereika, cybersecurity expert at Surfshark.

Fraudulent Apps Still Slip Through

Surfshark’s analysis shows the removals were not just about bugs or technical issues. Google deleted more than 300,000 apps in one year for fraud, scams, or security violations. Apple also targeted almost 40,000 apps over similar issues. 

Developers from Vietnam (23%), China (18%), Pakistan (11%), the United States (9%), and India (6%) made up the majority of fraud-related removals on the App Store, showing a concentration in Asia.

But here’s where it becomes worrying: many of those apps had already reached millions of devices before they were flagged.

“Here’s the unsettling truth. Many of these malicious apps were already on millions of devices before they were caught and removed. Even though our study revealed that Apple rejected 25% of app submissions, while Google Play maintained a lower rejection rate of 10%, the presence of an app in an official store often creates a false sense of security, making users believe that every download is safe.

“In reality, dangerous apps often slip through standard checks, hiding in plain sight, and in some cases, they return under new disguises, re-uploaded by attackers who exploit weaknesses of these well-known app stores,” Sereika explained.

This is an ecosystem where attackers exploit weaknesses in oversight, using advanced methods, including artificial intelligence, to design apps that appear legitimate, only to steal data or scam users once installed. 

Apple reported terminating nearly 147,000 developer accounts in 2024, up 25% from the previous year, while Google cut off about 155,000 accounts. Yet malicious developers often re-emerge under new identities, highlighting the cat-and-mouse dynamic between regulators and attackers.

Apple’s removals have actually dropped compared to 2022, when it wiped more than 186,000 apps from its store. Google, however, has become far more aggressive in its enforcement, leading to mass takedowns that reflect the scale of the threat.

The challenge, according to experts, is that malicious developers adapt faster than security systems can respond. Fake apps often mimic popular ones and reappear under slightly altered names or new developer accounts.

What Users Can Do

While both companies highlight their monitoring efforts in transparency reports, experts warn that the burden is partly on users.

“Even though Google and Apple are actively monitoring and removing unsecured apps from their stores, the responsibility also falls on users to practice safe downloading habits. This includes checking app permissions, reading reviews, and sticking to well-known developers. Additionally, installing security software and keeping devices updated can offer an added layer of protection,” Sereika added.

The numbers show that just because an app is available on official stores does not mean it is safe. With millions of apps created and uploaded, being cautious is highly essential.

Globally, the number of leaked accounts surged by 34%, rising from 70 million in Q1 to 94 million in Q2.

The United States (42.5M), France (11.4M), and India (1.7M) topped the list of most-affected countries during the second quarter.

Why it Matters

Commenting on the findings, Sarunas Sereika, product manager at Surfshark, warned of the growing risks posed by personal data exposure:

“In today’s digital age, we constantly share personal information, from names and addresses for deliveries to phone numbers for appointments. Unfortunately, there’s no guarantee that companies are keeping this data secure. In the wrong hands, it can fuel identity theft, targeted scams, or be sold on the dark web.”

Nigeria’s Data Breach Landscape

Surfshark’s long-term analysis places Nigeria third in Sub-Saharan Africa in terms of total compromised accounts, with 23.3 million user records breached since 2004. Among these:

• 3 million were unique email addresses
• 13 million were accompanied by leaked passwords
• 56% of breached users are at risk of account takeovers and identity-related crimes
• Statistically, 1 in 10 Nigerians has been affected by a data breach

Nigeria’s Breach Trend in Q2 2025

The decline in breached accounts in Q2 is a positive development, but the overall volume remains high. Experts say the drop may reflect short-term gains in cybersecurity or underreporting, not a permanent solution.

Most Breached Countries in Q2 2025 (by volume)

1. United States – 42.5M
2. France – 11.4M
3. India – 1.7M
4. Germany – 1.3M
5. Israel – 1.2M
6. Canada – 968.6K
7. United Kingdom – 944K
8. Thailand – 889.1K
9. Brazil – 639.6K
10. China – 578.3K

Breach Density (Accounts per 1,000 Residents)

• France – 172
• Israel – 130
• United States – 123
• Singapore – 26
• Canada – 24
• Others: South Sudan, Belgium, Ireland, Switzerland, and Germany

Explore Nigeria’s full breach profile:
Surfshark Global Data Breach Monitor – Nigeria

Nigeria drops by twelve places from last year, which reflects a lack of commitment to developing the digital landscape and positioning the country as a leader in leveraging technological advancements to improve citizens’ quality of life.

“In an election year like 2024, where the digital realm shaped political discourse and societal values, prioritizing digital quality of life proved to be more important than ever.

It helps to ensure informed citizens, protects democratic processes, and fosters innovation. Our annual project helps to better understand where each county stands in terms of digital divide, highlighting where a nation’s digital quality of life excels and where further focus is required,” says Tomas Stamulis, chief security officer at Surfshark.

Out of the Index’s five pillars, Nigeria performed best in e-security, claiming 76th place, but faced challenges in e-infrastructure, ranking 108th.

The nation ranks 94th in e-government, 103rd in internet quality, and 106th in internet affordability. In the overall Index, Nigeria lags behind South Africa (66th) and Kenya (89th).

Collectively, African countries lag behind in their digital quality of life, Nigeria taking 14th place in the region.

Nigeria ranks lower in e-government than 77% of the countries analyzed, with 93 countries above.

E-government determines how advanced and digitized a country’s government services are. A well-developed e-government helps minimize bureaucracy, reduce corruption, and increase transparency within the public sector.

This pillar also shows the level of Artificial Intelligence (AI) readiness a country demonstrates. Countries with the highest readiness to adopt AI technology are also ready to counter national cyberthreats. Nigeria ranks 94th in the world in e-government — six places lower than last year.

Nigeria is 76th in the world in e-security —  three places lower than last year.

The e-security pillar measures how well a country is prepared to counter cybercrime and how advanced a country’s data protection laws are.

In this pillar, Nigeria lags behind South Africa (75th) and Kenya (69th). Nigeria is unprepared to fight against cybercrime, the country has some data protection laws.

Nigeria’s internet quality is 25% lower than the global average

Nigeria’s fixed internet averages 39Mbps. To put that into perspective, the world’s fastest fixed internet — Singapore’s — is 347Mbps. Meanwhile, the slowest fixed internet in the world — Tunisia’s — is 14Mbps.

• Nigeria’s mobile internet averages 78Mbps. The fastest mobile internet — the UAE’s — is 430Mbps, while the world’s slowest mobile internet — Yemen’s — is 12Mbps.

Compared to South Africa, Nigeria’s mobile internet is 15% slower, while fixed broadband is 51% slower. Since last year, mobile internet speed in Nigeria has improved by 65%, while fixed broadband speed has grown by 55%.

The internet is unaffordable in Nigeria compared to other countries.

• Nigerians have to work 10 hours 43 minutes a month to afford fixed broadband internet. It is 46 times more than in Bulgaria, which has the world’s most affordable fixed internet (Bulgarians have to work 14 minutes a month to afford it).
• Nigerians have to work 2 hours 44 minutes 14 seconds a month to afford mobile internet. This is 18 times more than in Angola, which has the world’s most affordable mobile internet (Angolans have to work 9 minutes a month to afford it).

Nigeria is 108th in e-infrastructure.

Advanced e-infrastructure makes it easy for people to use the internet for various daily activities, such as working, studying, shopping, etc.

This pillar evaluates how high internet penetration is in a given country, as well as its network readiness (readiness to take advantage of Information and Communication Technologies). Nigeria’s internet penetration is low (35% — 109th in the world), and the country ranks 102nd in network readiness.

On a global scale, investing in e-government and e-infrastructure improves digital wellbeing the most

• Among the five pillars, e-government has the strongest correlation with the DQL index (0.92), followed by e-infrastructure (0.91).
• Internet affordability shows the weakest correlation at 0.65.

Summary are the key findings about Nigeria:

• Nigeria lags behind South Africa (66th) and Kenya (89th) in digital quality of life.
• Nigeria’s internet quality is 25% lower than the global average and ranks 103rd in the world.
• Nigeria’s fixed internet speed (39Mbps) has improved by 55% since last year, while mobile speed (78Mbps) has improved by 65%.
• The internet is unaffordable in Nigeria compared to other countries. Nigerians have to work 10 hours 43 minutes  a month to afford fixed broadband internet — 46 times more than in Bulgaria, which has the world’s most affordable fixed internet.
• Nigeria performed worst in the e-infrastructure pillar, which would need to improve by 58% to match the best-ranking country (United States).
• Overall, African countries lag behind in their digital quality of life, Nigeria taking 14th place in the region.

This decision came in response to an interim order issued by the Turkish Competition Authority (TCA), which prohibits data sharing between Threads and Instagram.

To shed light on the implications of this move, Techeconomy had a conversation with Goda Sukackaite, Privacy Counsel at cybersecurity company Surfshark. 

Sukackaite shared her expert opinion on the topic, emphasizing the significance of data privacy regulations and the potential concerns related to Threads’ data collection practices.

Threads and GDPR: A Closer Look

The General Data Protection Regulation (GDPR) is a comprehensive legal framework designed to safeguard user privacy. 

In simpler terms, it ensures that companies handle personal information transparently, with respect, and based on clear legal grounds, such as user consent. 

Threads’ data collection practices raise several concerns from a GDPR perspective and Sukackaite says, “Threads’ data practices may raise concerns due to the amount of personal data it collects, how it uses this data, and whether there is  a legal ground for such data processing, in this case – an unambiguous consent from users.”

Threads collects a substantial amount of personal data from its users. This includes information about their activities, preferences, and interactions. The sheer volume of data raises questions about how it is used and whether there is a valid legal basis for processing it.

“The other thing is that Threads users may be unable to exercise their GDPR rights: if users did not register on Threads via Instagram (for instance, if they post on Threads through third-party integrations).” Their ability to exercise GDPR rights may be limited and this could prevent them from deleting their data, obtaining copies, or understanding how their information is used.

Speaking on sensitive data collection, including health information, Sukackaite explains why this type of data collection can be intrusive and potentially illegal under GDPR:

“Health information falls into a special category of personal data under GDPR. Handling such data requires stricter legal requirements due to its intimate nature. Mishandling health data can lead to discrimination and privacy violations.”

For a regular social media user unfamiliar with legal jargon, the consequences of being unable to exercise GDPR rights can be likened to having an unlocked safe:

“Imagine having a safe that you can’t lock. It’s not very useful. Anyone could access your private belongings and use them without your permission. Similarly, if users can’t exercise their GDPR rights, their personal information becomes vulnerable.”

Beyond GDPR, Sukackaite highlights broader privacy concerns associated with social media platforms like Threads. She says, “Platforms that collect vast amounts of information risk enabling mass surveillance, highly detailed user profiling, and microtargeting. These practices can lead to privacy violations, discrimination, and data breaches.”

Global Importance of Data Privacy Regulations

The situation in Turkey comes at a time where cybersecurity is a global trend. Sukackaite emphasizes why data privacy regulations are increasingly important. “Our personal information has become a valuable currency in the digital age. As our lives move online, regulations act as necessary checks to protect individuals from misuse of their personal details.”

Data Sharing Across Threads and Instagram

Sukackaite addresses the privacy implications of Threads potentially sharing user data across Meta platforms like Facebook and Instagram:

“Sharing data across platforms can create comprehensive user profiles. However, it remains unclear how information from one platform impacts a user’s experience on another. This lack of transparency can expose users to unwanted targeted advertising or other privacy risks.”

Let’s say Threads gets reinstated in Turkey after addressing these concerns. What steps could Meta take to rebuild trust with users in Turkey and elsewhere?

“To rebuild trust, Meta could be transparent about the mistakes made and how they’re rectifying them, clearly inform users about data practices, obtain genuine consent, and provide robust options for users to control their data privacy.”

Solid data privacy regulations worldwide are a necessity globally.

Key takeaways from the study

• Globally, there were 76 new internet restrictions in 2023. 17 of them happened in Africa.
• Senegal imposed the highest number of restrictions in Africa — 5. The restrictions happened following the sentencing of opposition leader Ousmane Sonko.
• Zimbabwe, Gabon and Chad imposed restrictions amid elections.

Surfshark’s internet shutdown yearly recap reveals that Africa was the second most intensive continent in internet restrictions (behind Asia) in 2023. Most internet freedom violations in Africa happened in 4 countries: Senegal (5 cases), Ethiopia, Guinea, and Mauritania (2 cases each).

“Internet shutdowns are commonly used by autocratic regimes to hinder communications, thwart protest organization, and cut people off from loved ones in times of political unrest. During elections, internet restrictions limit the spread of information about candidates, eroding the democratic integrity of elections. Furthermore, amid violent government crackdowns, internet blackouts can effectively prevent the dissemination of critical information regarding human rights abuses to the international community. The increasingly frequent use of internet shutdowns threatens the global foundation of free speech and human rights, dangerously tipping the scale towards oppression and away from democratic accountability.”, says Lina Survila, Surfshark spokeswoman.

Senegal imposed the highest number of restrictions in Africa — 5 

The Senegalese government imposed internet restrictions following the sentencing of  opposition leader Ousmane Sonko. Measures included limiting access to social media platforms and an internet curfew during the summer.

In Ethiopia, access to platforms like YouTube, Facebook, Telegram, and TikTok was restricted in response to protests against the government’s attempt to split the Ethiopian Orthodox Church. Guinea and Mauritania also imposed restrictions amid protests and political tensions.

Zimbabwe, Gabon and Chad imposed restrictions amid elections. Somalia, Sudan and Tanzania imposed restrictions amid political tensions as well.

In 2024, elections are scheduled for Mali, Malawi, Chad, and Mauritania. All these countries have a history of internet restrictions during elections, making them vulnerable to further disruptions.

The Internet Censorship Tracker was developed by Surfshark in partnership with internet watchdog NetBlocks.

The research tracks partial and complete internet and social media shutdowns in 196 countries and territories from 2015 onwards.

[Featured Image Credit]

Cybersecurity company Surfshark conducted a study analyzing UN countries’ stances in the 2021 UN Human Rights Council (HRC) Resolution on the promotion, protection, and enjoyment of human rights on the internet.

By comparing countries’ stances with data from Surfshark’s Internet Shutdown Tracker, Surfshark was able to identify 5 African countries that claimed to support the resolution but “broke their word” by imposing internet restrictions.

In today’s world, internet shutdowns have become a major concern. Authoritarian governments frequently employ them as a means to manipulate the public and stifle free speech.

The UN resolution on human rights on the internet aims to make countries openly condemn these shutdowns and other ways of restricting online speech. However, it’s concerning that even though five African countries publicly supported the resolution, they still imposed internet restrictions.

It’s important to promote an open and accessible internet and pressure countries to uphold their commitments regarding human rights online”,

– says Gabriele Racaityte-Krasauske, Surfshark spokeswoman.

The African countries that supported the 2021 UN resolution but “broke their word” were Sudan, Burkina Faso, Mauritania, Somalia, and Nigeria:

Nine countries from other continents also “broke their word”: India, Cuba, Uzbekistan, Pakistan, Russia, Brazil, Armenia, Indonesia, and Ukraine.

Surfshark’s Internet Shutdown Tracker reveals that there were a total of 58 internet disruptions in these 14 countries during or after the adoption of the resolution.

India stands out as the country that has “broken its word” the most, with 19 internet disruptions since the resolution’s adoption in 2021 (if we included the Jammu & Kashmir region, this number would be even higher).

The Human Rights Council convenes at least three regular sessions annually. The upcoming 53rd session is scheduled for the summer of 2023.

While the agenda of the specific resolution is currently unknown, Surfshark will keep an eye out for any updates regarding upcoming UN resolutions on human rights on the internet.