Home » Technology

Study Finds Android Apps Could Put Personal Data At Risk

Submitted by on October 25, 2012 – 8:37 amOne Comment

More bad news for Android: the operating system that always seems to play second fiddle to iOS has just been hit with a new report saying it’s apps are not entirely secure. And while many of these “reports” come from companies eager to sell anti-virus software, this one comes from authentic academic researchers.

A team at the Leibniz University of Hanover found that eight percent of apps available in the Google Play market are susceptible to attacks, leaving personal data vulnerable. Mashable reports:

Researchers… studied more than 13,000 Android apps and, specifically how they responded to attacks targeted at their Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. These are tasked with encrypting data when it’s moved across networks to avoid the so-called “man in the middle” attacks, when an intruder can snatch data as it’s moved around networks.[...]

All a hacker would have to do to exploit this vulnerability is send out a certificate to communicate, which allows him to insert himself into a connection between two devices exchaning [sic] data.

Android has been knocked for its security before, but not usually by such an objective source. And system security is one area where arch-rival Apple always seems to be a little overly confident. However, maybe the researchers would turn up some dirt if they looked into the Apple App Store.

Do you have an Android phone? What do you think about its security?

Related Posts with Thumbnails

Leave a comment!

Add your comment below, or trackback from your own site. You can also subscribe to these comments via RSS. Be nice. Keep it clean. Stay on topic. No spam.

We want to keep in touch with you. If you give us your email address, you may receive marketing emails from the DJ Networks family. We hope that's cool.

You can use these tags:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

This is a Gravatar-enabled weblog. To get your own globally-recognized-avatar, please register at Gravatar.