Open Enrollment | Subscribe to Publishing Executive HERE
Connect
Follow us on
Advertisement
 

Security Risks Posed by 100K Android Apps

26% of Apps in Google Play Store Can Access Personal Data such as Contacts and email.

November 5, 2012
Get the Flash Player to see this rotator.
 
WALTHAM, Mass., Nov. 1—Security research firm Bit9 today released a new research report showing that more than 100,000 Android applications in the Google Play store—25 percent—pose a security risk to mobile device users and the enterprise networks to which they connect. In the most comprehensive research project of its kind, Bit9 examined the security permissions of more than 400,000 Android applications. The company focused on Google Play applications because more smartphones today run Android than any other operating system.

Criteria for defining an application as “questionable” or “suspicious” included the permissions requested by the application, categorization of the application, user rating, number of downloads, and the reputation of the application’s publisher. In its examination of the more than 400,000 Android apps, Bit9 found that 72 percent use at least one high-risk permission. In addition, the company found that:
  •     42 percent of applications access GPS location data, and these include wallpapers, games and utilities
  •     31 percent access phone calls or phone numbers
  •     26 percent access personal data, such as contacts and email
  •     9 percent use permissions that can cost the user money
This report follows previous Bit9 research on the most vulnerable mobile devices.

“A significant percentage of Google Play apps have access to potentially sensitive and confidential information,” said Harry Sverdlove, chief technology officer for Bit9. “When a seemingly basic app such as a wallpaper requests access to GPS data, this raises a red flag. Likewise, more than a quarter of the apps can access email and contacts unbeknown to the phone user, which is of great concern when these devices are used in the workplace.”

In addition to this comprehensive research, Bit9 conducted a survey of IT security decision makers who collectively influence mobile device usage policy for more than 400,000 employees. Almost three quarters of those surveyed said their organization allows employees to bring your own device (BYOD) to work and access company email, calendar and scheduling—a risky decision given the significant percentage of applications Bit9 found with access permissions to these programs. Of the IT security decision makers surveyed:
  •     78 percent feel phone makers do not focus enough on security
  •     But 71 percent allow employees to bring their own smartphones to the workplace
  •     68 percent rank security as their most important concern when deciding whether to allow employees to bring their personal devices to work
  •     But only 24 percent of companies employ any sort of application control or monitoring to know what applications are running on employees' mobile devices
  •     Only 37 percent have deployed any form of malware protection on employee-owned devices
  •     84 percent of respondents believe iOS is more secure than Android.


 

Companies Mentioned:

SPONSORED CONTENT

MORE ON E-MEDIA >>

FROM THE BOOKSTORE

As important as email marketing is, being an expert at it is no easy task. But do not fret. Email Marketing 2014 provides the trends and best practices you need to follow. You'll find: 21 email trends charts featuring data from Who's Mailing What!Analysis of 11 effective cross-channel emails Best practices covering everything from email copywriting and design to data, metrics, CRM, deliverability and more4 email case studies Email Marketing 2014 Trends, Best Practices & Case Studies

As important as email marketing is, being an expert at it is no easy task. But do not fret. Email Marketing 2014 provides the trends and best practices you need to follow. You'll find: 21 email trends charts featuring data from Who's Mailing What!Analysis of 11 effective cross-channel emails Best practices...

ORDER NOW

A guide to delivering a better user experience through A/B testing: Offers best practices and lessons learned from over 100,000 experiments run by over 2,000 Optimizely customersDetails a roadmap for how to use A/B testing to personalize your customer's web experience and a practical guide to start A/B testing todayAuthors Dan Siroker and Pete Koomen are cofounders of Optimizely.com, an user-friendly testing system that more than 2,000 organizations use A/B Testing: The Most Powerful Way to Turn Clicks Into Customers

A guide to delivering a better user experience through A/B testing:
Offers best practices and lessons learned from over 100,000 experiments run by over 2,000 Optimizely customersDetails a roadmap for how to use A/B testing to personalize your customer's web experience and a practical guide to start A/B testing todayAuthors Dan...

ORDER NOW

 

COMMENTS

Click here to leave a comment...
Comment *
Most Recent Comments: