Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11More than 4,000 Android apps reveal user information
A survey conducted by security expert Bob Diachenko of Security Discovery in collaboration with Comparitech analyzed 15,735 Android applications (about 18% of the software available on the Play Store), uncovering the problem.
'4.8% of mobile apps use Google's Firebase cloud server service to store user information that is not fully secure, allowing anyone to access a repository of personal information user ID, token code as well as many other data without requiring passwords or authentication measures, 'said Comparitech representative.
The data and numbers revealed include email address (7 million), username (4.4 million), password (1 million), phone number (5.3 million), full name (18 , 3 million), messages (6.8 million), geolocation information (GPS - 6.2 million), IP address (156,000), residence address (560,000). All figures are listed at the 'minimum' level, which means the actual number will be even greater.
The number of software that has just been discovered is mainly games and applications in the category of Education, Entertainment and Business, with a total download and installation of 4.22 billion. Comparitech said that the ability of information of Android users to be exploited by at least one of the applications is very high in this case.
Along with 155,066 applications with publicly available data stores, the researchers also found 9,014 software with the right to overwrite, potentially exploiting hackers to insert malicious data and cause database damage, even distribute malware.
After being notified of the problem on April 22, Google immediately contacted and asked developers to resolve the issue.
Firebase, acquired by Google in 2014, is a popular mobile application platform, offering a variety of tools to help program developers build software, securely store data and associated files. View, correct errors, and even interact with users through the in-app chat feature.
This is not the first time the database containing Firebase user information has been exposed. Security experts at Appthority, Inc., discovered a similar case in 2018, with more than 100 million records of information leaked. Notably, Firebase is a cross-platform tool, so researchers also warn that the problem could affect iOS users as well as web-based applications.
4 ★ | 2 Vote
Kareem WintersYou should read it
- What is data encryption? Things to know about data encryption
- How to remove Adware Tracking Cookie when a computer is infected
- Top 20 best encryption software for Windows
- 5 popular encryption algorithms you should know
- Google was fined $ 17 million for tracking users on Safari
- Some common data security measures
- How to see everything Google knows about you?
- What is end-to-end encryption? How does it work?
May be interested
- If using an Android phone, be careful: You may be being tracked without knowing
android - google's mobile operating system has behaviors that silently monitor users that make them unaware. more seriously, it can also access a user's personal data store through a large number of pre-installed applications that are virtually difficult to uninstall. - 6 websites update useful information about Android you should knowandroid is a large, diverse operating system that any user desires to be able to fully explore it. but with a rapid development cycle, this can be somewhat elusive.
- Series of fake Android apps you should remove from your device immediatelyfake android apps aren't just found on shady third-party app stores. sometimes they even make their way to the play store.
- Detects many malicious Android applications that hide icons themselves to make it harder to uninstallthreat researchers at australia-based sophoslabs have found 15 android apps, apparently doing nothing but displaying ads on the device. these programs have product names and descriptions from qr readers to photo editors.
- Great apps only available on Androidgoogle play is slowly catching up with the huge number on the app store that apple has 'built up' to build. for android believers, the new 'green robot' operating system is the most appropriate platform to push hardware and software to its limits.
- Top Android apps are free and discounted (May 24, 2019)what do you do to find discounted android apps, free android apps? tipsmake.com will synthesize the most outstanding android apps that are free and discounted to help you save a bit of money during the time when prices escalate, gas prices sometimes increase slightly.
- Warning: Android fake Uber software appears to trick user passwordssecurity firm symantec has discovered a new malware with a fake uber application interface aimed at android, via pop-ups that require user login and password information to trick them.
- 4 ways to uninstall apps for Android devicesare you installing too many software on your beloved android phone without needing to use them? storing these unused applications both consumes memory and sometimes even drains the battery due to applications running in the background.
- Steps to run Android apps on Windows 11microsoft has officially launched the feature to run android applications on windows 11. however, the software giant has only stopped at the level of testing on a small group of users in the us.
- 4 hidden methods and application restrictions on Androidit's easy to get distracted by so many apps on your phone. the best way to reduce the 'gluing' time to your screen is to get these apps out of your sight.
Security solution
- How to use Emsisoft Decryptor to recover files encrypted by DJVU ransomware
- Warning about Ransomware Sqpc, belonging to STOP / Djvu
- SaltStack has the most serious vulnerability ever, thousands of servers can be seriously affected
- What is Azure Sphere?
- An online dating application hacked, 3.6 million users affected
- What is DDoS? How to limit and prevent DDoS attacks
How to use Emsisoft Decryptor to recover files encrypted by DJVU ransomware
Warning about Ransomware Sqpc, belonging to STOP / Djvu
SaltStack has the most serious vulnerability ever, thousands of servers can be seriously affected
What is Azure Sphere?
An online dating application hacked, 3.6 million users affected
What is DDoS? How to limit and prevent DDoS attacks