You Are Here: Home » Android » News » Security

Researcher Says That 8% of Android Apps Are Leaking Private Information

By Zenobia on July 21st, 2011

android-red Android has had its fair share of malware problems. Whenever malware are detected, Google reacts swiftly and remove them. However, according to security researcher Neil Daswani, around 8% of the apps on the Android market are leaking private user data.

Neil Daswani, who is also the CTO of security firm Dasient, says that they have studied around 10,000 Android apps and have found that 800 of them are leaking private information of the user to an unauthorized server. Neil Daswani is scheduled to present the full findings at the Black Hat Conference in Las Vegas which starts on July 30th.

The Dasient researchers also found out that 11 of the apps they have examined are sending unwanted SMS messages. What these leaks and violations or privacy mean is that people - when using these apps - are running the risk of having their identities stolen. Those who haven't enlisted the extra protection from companies like LifeLock are being widely exposed through the Android malware and Google needs to step up and do something about this.

Google needs to take charge

This malware problem on Android has become too much. One of the main reason that we see malicious apps in the market is because of the lack of regulation in the apps that get into the Android Market.

Sure, the lack of regulation can be good. It means that developers can make their apps without worrying if Google will accept their apps or not. It fits into the pre-existing application distribution model where anyone can develop and publish their own apps.

However, this comes at a price - the malware problem. Yes, most of the problems with these malicious apps can be avoided if only users read the permission requirements of the apps. But, what percentage of the users actually read the permission requirements of all the apps they download?

I think that it is time that Google make approval of the apps a requirement before it gets into the Market. They do not need to do it like Apple, but a basic security check before an app gets on the market will be nice.

If nothing is done about and this problem is allowed to grow, it will end up killing the platform.

« Previous Post

Submit to Reddit

Stumble

Related Posts by Tags: android, malware

Pingback: Un investigador asegura que el 8% de las apps de Android tienen problemas de privacidad - Wayerless
Pingback: Investigador asegura que el 8% de las apps de Android tienen problemas de privacidad | Dark Anthem Blog
Pingback: 8% of Android Apps Are Leaking Private Information | RXTX
Pingback: Mark Dalby :: Security :: 8% of Android Apps Are Leaking Private Information
dave

There’s an even easier way to fix: allow the user to over-ride the application’s permissions.
- Bugmenot
  
  cyanogen does it, newer versions of the os will do it too; i don’t remember the source, i think the android blog…
Pingback: Morning Media Summary
Pingback: 800 Android Apps Leaking User Data
Pingback: Android apps: leaking? Or working as designed? | SecurityCurve
N2liberty

I would like to see a mandatory description of why an application needs a specific type of access including a description of the information that will be transmitted and received. There are many apps I will not instal because I cannot for the life of me understand why they would need phone access, internet access or location information. Why does a flashlight need to communicate with the internet?
Pingback: 8% Of Android Apps Leak Your Private Information [STUDY]
Pingback: 8% Of Android Apps Leak Your Private Information | GizmoCrazed
Anonymous

They don’t say whether or not these 800 apps were found in the Android Market.
Dezmo

The Google Marketplace does have feedback on apps which every user should read along with the permissions of the applications. Having a choice allows users to make a good choice or a bad choice in the applications they use. Dealing with Malware is a small price to pay to pay for the flexibility you get from the Android platform. Apple frequently bounces apps for their own financial and strategic benefit even though they claim its in the interest of protecting users. Google could improve the Android by allowing users to grant specific permissions to Apps rather than the “take it or leave it” way that they are presented now.
Pingback: Pelo menos 800 aplicativos de Android enviam dados de usuário sem autorização » Amplanet - Mais internet pra você
http://vasilydernis.blogspot.com/ Vasily Dernis

somebody make a privacy app that monitors other apps and reports to the user what the other apps are doing.
Anonymous

Sounds like that dude is talking a lot of smack.
http://www.net-privacy.us.tc
Pingback: » Researcher Says That 8% of Android Apps Are Leaking Private Information Ryan's PC Repair Shop
Pingback: 8% Of Android Apps Leak Your Private Information [STUDY] | SecurityCameraShop.net
Pingback: Vodafone, SAP, Rovio. — mobilbranche.de
Pingback: Google+ Games Plan, Android Apps Leak, Google+ Brands Mistakes, Microsoft's Record Quarter | Fast Company
Pingback: 800 out of 10,000 Android Apps Leak Private Information | Gradly
Pingback: Broadfield Media LLC – Google+ Games Plan, Android Apps Leak, Google+ Brands Mistakes, Microsoft’s Record Quarter
Pingback: Apple Chasing Hulu?, Google+ Games Plan, Android Apps Leak, Google+ Brands Mistakes, Microsoft’s Record Quarter
Pingback: Broadfield Media LLC – Apple Chasing Hulu?, Google+ Games Plan, Android Apps Leak, Google+ Brands Mistakes, Microsoft’s Record Quarter
Piousperch

So it kills the platform; what a crying shame. There ought to be a roll back of app computers to 1995!
Pingback: Apple Chasing Hulu?, Google+ Games Plan, Android Apps Leak, Google+ Brands Mistakes, Microsoft’s Record Quarter | Global Advisors
Pingback: Google’s Problems with Android Apps, Webmaster Tools and Oracle – RMS Says “Don’t Go There” « FOSS Force
Pingback: eamcet*[SEO対策調査自動更新ブログ] | Android Market、アプリの8%が個人情報を無断送信
Pingback: Study shows 8% of Android apps leak private data on purpose | soft android – softandroid.com
Inman Breaux

10,000 is a pretty small sample size of the entire Android market. Many free apps need information to better advertise to their users. Paid apps should not need nearly as much information however. That’s just data gathering.
Google will make improvements to how these permissions are shared to and displayed to users.
Pingback: Norton Mobile Security: Ultimate Protection For Your Smartphone
Pingback: Kendrick Valenciana
Pingback: facebook sex.be

Researcher Says That 8% of Android Apps Are Leaking Private Information was originally published on Digitizor.com on July 21, 2011 - 12:59 am (Indian Standard Time)