Never miss a great news story!
Get instant notifications from Economic Times
AllowNot now


You can switch off notifications anytime using browser settings.
12,086.70114.9
Stock Analysis, IPO, Mutual Funds, Bonds & More

Be cautious when installing free apps from Google Play Store; over 1,600 bugs found in backend systems

Around top 5,000 free apps available in the Google Play Store were found to have vulnerabilities.

IANS|
Aug 13, 2019, 03.12 PM IST
0Comments
Getty Images
smartphone-apps-tech_GettyImages
The vulnerabilities, affecting multiple app categories, could allow hackers to break into databases.
NEW YORK: Cybersecurity researchers have identified more than 1,600 vulnerabilities in the support ecosystem behind the top 5,000 free apps available in the Google Play Store.

While the researchers from Georgia Institute of Technology and The Ohio State University studied only applications in the Google Play Store, applications designed for iOS may share the same backend systems.

The vulnerabilities were found in the backend systems that feed content and advertising to smartphone applications through a network of Cloud-based servers.

The vulnerabilities, affecting multiple app categories, could allow hackers to break into databases that include personal information - and perhaps into users' mobile devices, said the study scheduled to be presented at the 2019 USENIX Security Symposium in the US on Thursday.

"These vulnerabilities affect the servers that are in the cloud, and once an attacker gets on the server, there are many ways they can attack," said Brendan Saltaformaggio, Assistant Professor in Georgia Tech's School of Electrical and Computer Engineering.

Vyng, Drupe, Sonar Ruler: Download These 6 Brilliant Apps To Liven Up Your Smartphone

of 7
Next
Prev
Play Slideshow

Tech Detox

20 Mar, 2019
By Rajarshi BhattarcharjeeLiven up your smartphone like never before with a digital assistant, video ringtones, stripped back music and more.Image: Getty
Next

The researchers were still investigating whether attackers could get into individual mobile devices connected to vulnerable servers.

"It's a whole new question whether or not they can jump from the server to a user's device, but our preliminary research on that is very concerning," Saltaformaggio added.

In their study, the researchers discovered 983 instances of known vulnerabilities and another 655 instances of zero-day vulnerabilities spanning across the software layers - operating systems, software services, communications modules and web apps - of the Cloud-based systems supporting the apps.

To help developers improve the security of their mobile apps, the researchers have created an automated system called SkyWalker to vet the Cloud servers and software library systems.

SkyWalker can examine the security of the servers supporting mobile applications, which are often operated by Cloud hosting services rather than individual app developers.

Seven Apps That Every Man Should Have On His Smartphone

of 8
Next
Prev
Play Slideshow

Making Life Easier!

17 Nov, 2017
In a mobile-driven world, smartphone apps bring a wealth of infotainment and services at your fingertips. Here are a few that you can consider.
Next

Want stories like this in your inbox? Sign up for the daily ET Panache newsletter.

You can also follow us on Facebook, Twitter and LinkedIn.

Also Read

WhatsApp disappears from Google Play Store

FB, Instagram on Google Play Store vulnerable: Check Point

Google Play's 'Best of 2019': Indians loved Spotify, Call of Duty: Mobile; looked for motivation in 'The Magic of Thinking Big'

WhatsApp back on Google Play Store after sudden disappearance for a day

Did WhatsApp suddenly disappear from your phone's Google Play Store? You aren't alone

Comments
Add Your Comments
Commenting feature is disabled in your country/region.
Download The Economic Times Business News App for the Latest News in Business, Sensex, Stock Market Updates & More.

Popular Categories


Other useful Links


Copyright © 2019 Bennett, Coleman & Co. Ltd. All rights reserved. For reprint rights: Times Syndication Service