Skip to main content
  1. Home
  2. Mobile
  3. Android
  4. News

Around 40% of Android and iOS apps have high-risk vulnerabilities

Christian de Looper
By

It looks like the apps we use may be at a higher risk of having vulnerabilities than anyone previously thought. According to a new study, which involved expert testing of iOS and Android apps, over a third of iOS and Android apps have high-risk vulnerabilities. In other words, there are likely at least a few apps that leave your data exposed.

The study comes from Positive Technologies’ Vulnerabilities and Threats Mobile Applications 2019 report and noted that the majority of vulnerabilities came in the form of insecure data storage. More specifically, 43% of Android apps were found to have vulnerabilities, while 38% of iOS apps suffered the same fate.

There’s an even bigger problem than the basic fact that there are so many vulnerable apps — and that’s the fact that 89% of those vulnerable apps can be exploited by malware, meaning that potential hackers don’t need actual physical access to exploit the vulnerabilities. According to the study, once the malware is on the device, it can get permission to access user data, and then send that data to attackers. A much smaller percentage of apps had source code vulnerabilities.

“In 2018, mobile apps were downloaded onto user devices over 205 billion times. Developers pay painstaking attention to software design in order to give us a smooth and convenient experience and people gladly install mobile apps and provide personal information. However, an alarming number of apps are critically insecure, and far less developer attention is spent on solving that issue. Stealing data from a smartphone usually doesn’t even require physical access to the device,” Leigh-Anne Galloway, cybersecurity resilience lead at Positive Technologies, said in the study.

So what can be done to prevent attacks? Well, it really comes down to consumer education. Users should take care to be aware of the apps and the data that apps are requesting, and not grant apps access to data that they don’t need. If you’re ever in doubt, always decline the request to access. Not only that, but users should never open unknown links in SMS and chat apps, and Android users should only download apps from the Google Play Store and not third-party stores.

Editors' Recommendations

Video-editing app LumaFusion to get a Galaxy Tab S8 launch
A tablet featuring the LumaFusion video editing app.
I regret buying my iPhone 14 Pro for 3 big reasons
The back of the iPhone 14 Pro in Deep Purple color.
Relax, the EU’s scary USB-C rule won’t rob you of fast-charging benefits
iPhone 14 Pro and a Lightning cable.
The Google Home app finally has the big redesign you’ve been waiting for
Google Home icon on home screen.
It’s official: Apple is required to make a USB-C iPhone by 2024
Brand new USB-C type to Lightning fast charging cable of with iPhone 11 Pro Max
Xiaomi’s new phone has a 200MP camera — and its photos are stunning
Holding the Xiaomi 12T Pro to take a photo.
Lenovo’s AirPods alternatives are on sale for just $15 today
The Lenovo True Wireless Earbuds with their charging case.
This Garmin deal is perfect if you’re looking for a cheap smartwatch
The Garmin Forerunner 45 against a white backdrop.
The best OnePlus 10T cases and covers for 2022
Mint Mobile Free Trial: Get a week of free cellular service
Mint mobile banner image.
Audible Free Trial: Get 2 premium audiobooks for free
amazon offers 30 off annual audible deal with 099 echo dot 1
The best smartwatches for 2022: Apple Watch Series 8, Galaxy Watch 5, and more
Apple Watch Series 7 next to the Samsung Galaxy Watch 5.
The Pixel 6 gave Google momentum — now the Pixel 7 has to keep it
Someone holding the Google Pixel 6 Pro and Pixel 6a next to each other.