Three quarters of Android, iOS apps downloaded in 2018 have security weaknesses

A recent report has found an alarming trend when it comes to the third party mobile apps that Android and iOS users download regularly. A majority of these apps arrive with flaws, presenting security weaknesses that leave mobile devices vulnerable to hackers.

An article via Business Insider on June 21 cites a Positive Technologies’ report created by security researchers. They indicate that in 2018, 74 percent of the mobile apps downloaded, including those for iOS and Android, contained “insecure data storage” in them. These security weaknesses make private information such as passwords, personal data, and other correspondence more easily available for hackers to obtain.

The report went on to separate “medium risk” from “high-risk” vulnerabilities indicating that higher risk is more easily exploitable. They include insecure data storage as their report uncovered among the “medium risk” vulnerabilities. They note that 38 percent of the Android apps and 22 percent of those from iOS have the “high-risk” vulnerabilities. They also mentioned that 89 percent of security weaknesses found in apps are able to be exploited without physical access to the phone, or remotely.

The vulnerabilities seem to be “common oversights” that occur when an app is being designed. Positive Technologies’ report didn’t mention if any of the apps led to hackers being able to take sensitive information. However, the report goes on to give recommendations for how developers can implement “significant changes” in their app code to fix security vulnerabilities.

Leigh-Anne Galloway, the cybersecurity resilience lead at Positive Technologies gave app users some recommendations for better safety. Galloway said, “We recommend that users take a close look when applications request access to phone functions or data.” She added to “decline the request” if there are any doubts that the app needs that specific access to perform its duties. Additionally, app users need to be careful with regards to downloading apps from third-party sources and also when it comes to going to links in chat apps or SMS messages.

To see more information, visit Positive Technologies’ Vulnerabilities and Threats in Mobile Applications 2019 report.