Skip to main content

Around 40% of Android and iOS apps have high-risk vulnerabilities

It looks like the apps we use may be at a higher risk of having vulnerabilities than anyone previously thought. According to a new study, which involved expert testing of iOS and Android apps, over a third of iOS and Android apps have high-risk vulnerabilities. In other words, there are likely at least a few apps that leave your data exposed.

The study comes from Positive Technologies’ Vulnerabilities and Threats Mobile Applications 2019 report and noted that the majority of vulnerabilities came in the form of insecure data storage. More specifically, 43% of Android apps were found to have vulnerabilities, while 38% of iOS apps suffered the same fate.

There’s an even bigger problem than the basic fact that there are so many vulnerable apps — and that’s the fact that 89% of those vulnerable apps can be exploited by malware, meaning that potential hackers don’t need actual physical access to exploit the vulnerabilities. According to the study, once the malware is on the device, it can get permission to access user data, and then send that data to attackers. A much smaller percentage of apps had source code vulnerabilities.

“In 2018, mobile apps were downloaded onto user devices over 205 billion times. Developers pay painstaking attention to software design in order to give us a smooth and convenient experience and people gladly install mobile apps and provide personal information. However, an alarming number of apps are critically insecure, and far less developer attention is spent on solving that issue. Stealing data from a smartphone usually doesn’t even require physical access to the device,” Leigh-Anne Galloway, cybersecurity resilience lead at Positive Technologies, said in the study.

So what can be done to prevent attacks? Well, it really comes down to consumer education. Users should take care to be aware of the apps and the data that apps are requesting, and not grant apps access to data that they don’t need. If you’re ever in doubt, always decline the request to access. Not only that, but users should never open unknown links in SMS and chat apps, and Android users should only download apps from the Google Play Store and not third-party stores.

Christian de Looper
Christian de Looper is a long-time freelance writer who has covered every facet of the consumer tech and electric vehicle…
I thought I’d love these two iOS 18 features, but I don’t
iPhone 15 Pro with iOS 18 lock screen.

Apple finally released iOS 18 to the public on September 16 after months of betas. It’s one of the biggest iOS updates in history, ushering in a new age of Apple Intelligence, more customization, RCS support, a new Photos app, and a lot more.

I didn’t use the iOS 18 betas, so the public release is the first time I’ve tried out all of the new features, minus Apple Intelligence (it's coming in iOS 18.1 next month).

Read more
iOS 18: Everything you need to know about the iPhone update
An iPhone 15 Pro Max running iOS 18, showing its home screen.

Apple showed off the next major iteration of iOS during its Worldwide Developer Conference (WWDC) in June. The next big update is iOS 18, and it’s packing quite a punch in terms of features.

It will eventually bring in Apple Intelligence, which is Apple’s suite of AI tools. Combined with new customization tools, a redesigned Photos app, and more, there’s a lot to dive into. Here’s everything you need to know about iOS 18.
iOS 18 release date

Read more
Apple just launched the iOS 18.1 public beta. Here’s how it’ll change your iPhone
Someone holding an iPhone 15 Pro Max outside on a patio, showing the back of the Natural Titanium color.

This week is quickly shaping up to be a huge one for Apple fans. On Monday, Apple officially released iOS 18, watchOS 11, and macOS 15 to the general public. Tomorrow, regular sales begin for the new iPhone 16, iPhone 16 Pro, and Apple Watch Series 10. As if that weren't enough, Apple is now rolling out its first public betas with Apple Intelligence features.

Starting today, September 19, the public betas for iOS 18.1, iPadOS 18.1, and macOS 15.1 are available for anyone to download. The main draw to these public betas is that they all include Apple Intelligence features, which were previously locked to the developer betas for these software versions.

Read more