OMG! 185 Million Android Powered Devices Are at Risk


Android Powered DeviceLeibniz University of Hannover, Germany, and Philipps University of Marburg, Germany have released a report revealing that Android apps have staked the private information of as many as 185 million users. Their personal data or information is at risk because they are using Android apps.
The report directly blames Android developers for poorly implementing Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. These two protocols are responsible for encrypting information between users’ devices and the web.
When the research was conducted, 13,500 free Android apps were randomly selected from Google Play. About 8 percent are found potentially vulnerable to man-in-the-middle (MITM) attacks. 100 apps were audited for the misuse of various forms of SSL/TLS. They allow researchers to successfully launch MITS attacks against 41 apps and gathered various types of private and sensitive information. They were also able to capture credentials from various online services such as Yahoo, Google, Twitter, Facebook Microsoft Live ID, WordPess, bank accounts and lots of others.
Researchers, for the demo purpose, also injected virus signatures into an antivirus app to disable its protection. They suggested three solutions for protecting the devices—a solution integrated into the Android, a stand-alone solution and a solution integrated into Google Play.

Author: admin

Leave a Reply

Your email address will not be published. Required fields are marked *