When it comes to spaffing your login creds, Android biz apps are the business

300% better at it than non-business apps

5 Reg comments Got Tips?

Business apps for Android are three times more likely to leak login credentials than the average app, according to a new study by security firm NowSecure.

An analysis of more than 400,000 apps available from the Google Play store discovered that a quarter of all apps have at least one high risk security flaw, with 11 per cent leaking sensitive data over the network and 13 per cent displaying file system issues.

The researchers took a closer look at five popular app categories: business, finance, games, shopping, and social. NowSecure found that while Game apps are one-and-a-half times more likely to include a high risk vulnerability than the average app, business apps are three times more likely to do so.

"Leaky apps are the #1 security problem facing mobile users today,” said Andrew Hoog, chief exec and founder of NowSecure. “They transmit and/or store private user information and have vulnerabilities that result in the loss of private, sensitive user data.”

NowSecure tested 400,000 Android apps and collected data from more than 140 million mobile security data points to compile its results. More details on its methodology can be found here.

The mobile security firm is in the process of developing a mobile security visibility app for Android and iOS devices. The app, due out in a few weeks, will provide each users with a security score along with advice on techniques on how they can improve the health of their device. ®


Keep Reading

USA decides to cleanse local networks of anything Chinese under new five-point national data security plan

‘Clean Network’ initiative bans use of Chinese clouds, names Alibaba, Baidu, and Tencent as compromised

Staffer emails compromised and customer details exposed in T-Mobile US's third security whoopsie in as many years

And there it is – exactly what telco was fretting over in FY'19 results

UK smacks Huawei with banhammer: Buying firm's 5G gear illegal from year's end, mobile networks ordered to rip out all next-gen kit by 2027

Country to be hit with £2bn cost, massive tech delay after firm 'materially compromised' by latest US sanctions

Poor, poor mobile networks. UK's comms watchdog plans to stop 'em selling locked-down handsets

First OTT apps nick their SMS revenue, now this...

Better late than never... Google Chrome to kill off 'tiny' number of mobile web ads that gobble battery, CPU power

Could have done with this years ago to stave off rise of advert blockers but fine, OK, whatever, now it's coming

Readers of a certain age will remember GPRS: Old insecure tech from turn of millennium still haunts 5G networks

Positive Technologies analysts less than positive about GTP

Microsoft buys Affirmed Networks to provide cloudy services for 5G network operators

Vodafone, Orange, AT&T, and Softbank are already users, will soon have Azure option

Watch your MANRS: Akamai, Amazon, Netflix, Microsoft, Google, and pals join internet routing security effort

Filtering, anti-spoofing, coordination, validation to prevent crooks, spies hijacking victims' connections

Biting the hand that feeds IT © 1998–2020