if it is, in fact, something nefarious at play that would be a pretty crazy 2026 era exploit. but i'm certain it's a bug/artifact of some sort that, for whatever reason, affects this specific app.
It's hard to imagine what Headspace would like to achieve if this were an exploit executed by them. It's so salient, that it makes no sense to do on purpose. At least some portion of Apple employees and their families are going to be affected by this, and this would escalate to the legal department immediately.
My money is on Apple being the buggy one here.
Probably one from the repository of backdoors "accidentally" introduced or "never" discovered.
The mechanism's there, just needs to be woven with other exploits.
I noticed apps appearing on my Home Screen I’d never heard of before. Turns out with that setting and Family Purchase sharing turned on, every time my wife installed a new app, it installed on my phone too.
That may not be your exact scenario, but I wonder if turning off that Automatic App Downloads setting (if enabled) changes anything. Could give you a clue, if so.
I’m on the 26.5 beta and not seeing it at all.
https://appgoblin.info/apps/493145008/sdks
I see normal development and tracking SDKs. If anyone sees something interesting let me know.
This might be a stretch as I am taking a guess at the implementation, but apps can sync with iCloud Drive and I keep getting app folders showing up after telling it not sync but the prefs reset after certain states(not quite sure when/how)-- it then creates a new sync folder when interacting with the app again. (after having turned off sync and deleting the folder -- once it resets)
I am wondering if that app had that feature (icloud drive syncing) and something of the reverse is happening. Where you have a document still on icloud drive from when you installed the app. Maybe there is some action or state change going on after interacting with drive on a mac or something similar. And now it's created the right circumstances for icloud drive to try and sync the file but there is no app on any device so it downloads the app instead since it's missing and there is some dangling file looking for its home.
I had previously downloaded the app but and removed it because I never used it. A few days ago I noticed the app when browsing through my app list and thought maybe I didnt delete it properly, so I made sure to delete it. Then this morning my iPhone updated software versions and I found he Headpsace app again on my home, except this time it was grayed out and waiting for me to go on wifi to download.
I just deleted it again but am equally dumbfounded
An app store search also turned up "Headspace Care" (Ginger)
Ginger is now Headspace Care
It would be beyond malware for an app to install itself, since there's that app store hurdle to leap. (IMO)
Maybe that helps?
Off topic, put P5 as a game doesn't really care about spoilers much, there is one specific story telling gimmick that will screw with you if you're really sensitive to these kind of things.
They are drowning in tech debt. Here are two main issues I have with my iPhone/iOS: I can't search for the telegram app. It doesn't show up. It shows fine on the iPad. Also just a few minutes ago, app search decided not to work. I usually use it to pull my Wallet to pull my card. It was an awkward moment as I had no idea where the wallet app actually is.
I have lost count of the minor polish issues. The experience has degraded so much that you no longer care.
It's probably just some Apple bug.
Do you think they accidentally found this 5 seconds before their exploit was launched or do you think they might have actually put some effort into doing this since they are an organization of people.
I can see a fucked up ceo greenlighting a trick to get their app installed on your phone without asking. I can’t really see them having it repeatedly download.
I suspect it’s a bug, or worst case a backdoor that’s been triggered with a commercial app instead of spyware accidentally or “accidentally”.
That may not be the case here, and certainly isn't the assumption we can make more generally.
We regularly see regressions in platform security.
Currently we are inundated by accounts who don’t give a shit and make a new automatically 3 seconds after their flagging.
As long as those accounts are allowed I don’t really care for the stated rules that aren’t actually enforced.