Skip to main content
  1. Home
  2. Mobile
  3. News

Around 40% of Android and iOS apps have high-risk vulnerabilities

By

It looks like the apps we use may be at a higher risk of having vulnerabilities than anyone previously thought. According to a new study, which involved expert testing of iOS and Android apps, over a third of iOS and Android apps have high-risk vulnerabilities. In other words, there are likely at least a few apps that leave your data exposed.

The study comes from Positive Technologies’ Vulnerabilities and Threats Mobile Applications 2019 report and noted that the majority of vulnerabilities came in the form of insecure data storage. More specifically, 43% of Android apps were found to have vulnerabilities, while 38% of iOS apps suffered the same fate.

Recommended Videos

There’s an even bigger problem than the basic fact that there are so many vulnerable apps — and that’s the fact that 89% of those vulnerable apps can be exploited by malware, meaning that potential hackers don’t need actual physical access to exploit the vulnerabilities. According to the study, once the malware is on the device, it can get permission to access user data, and then send that data to attackers. A much smaller percentage of apps had source code vulnerabilities.

Related: 
Best new movies to stream on Netflix, Hulu, Prime Video, Max (HBO), and more

“In 2018, mobile apps were downloaded onto user devices over 205 billion times. Developers pay painstaking attention to software design in order to give us a smooth and convenient experience and people gladly install mobile apps and provide personal information. However, an alarming number of apps are critically insecure, and far less developer attention is spent on solving that issue. Stealing data from a smartphone usually doesn’t even require physical access to the device,” Leigh-Anne Galloway, cybersecurity resilience lead at Positive Technologies, said in the study.

So what can be done to prevent attacks? Well, it really comes down to consumer education. Users should take care to be aware of the apps and the data that apps are requesting, and not grant apps access to data that they don’t need. If you’re ever in doubt, always decline the request to access. Not only that, but users should never open unknown links in SMS and chat apps, and Android users should only download apps from the Google Play Store and not third-party stores.

Christian de Looper
Christian de Looper
Former Digital Trends Contributor
Christian de Looper is a long-time freelance writer who has covered every facet of the consumer tech and electric vehicle…
Topics

Editors’ Recommendations

3 big iOS 19 changes that I hope Apple reveals at WWDC 2025
iOS 19 sample logo.

We’re less than two days away from Apple’s big WWDC 2025 keynote, where the company will reveal new versions of each of its software platforms. One of the biggest changes this year is the expected shift from iOS 19 to iOS 26, with new versions of macOS, iPadOS, tvOS, watchOS, and visionOS also set to follow suit. We're also expecting to see the evolution of Apple Health, including a new AI doctor and Health subscription.

iOS 26, if it is to be named that, is expected to introduce one of the biggest evolutions in design for Apple software since the first iPhone was launched. Inspired by visionOS and the Apple Vision Pro, it’s expected to be a monumental redesign, but I hope that Apple also takes the time to make a few improvements.

Read more
iOS 26 rumored to go back to basics with four intriguing upgrades
An iPhone 15 Pro Max running iOS 18, showing its home screen.

In just two days from now, Apple will take the stage at WWDC 2025 and showcase the big yearly upgrades for its entire software portfolio. I am quite excited about the platform-wide design update and a few functional changes to iPadOS, especially the one targeting a more macOS-like makeover for the iPad’s software. 

Of course, analysts will be keenly watching for Apple’s next moves with AI, but it seems some of the most dramatic features have been pushed into the next year. Apple can afford some of those delays, as long as the company serves enough meaningful updates to its user base. Apple won’t exactly be running dry on AI, though. 

Read more
5 rumored iOS 26 features we could see at WWDC 2025
An iPhone 16 laying on a shelf with its screen on.

Apple’s upcoming WWDC 2025 showcase is going to be a busy one, even though the expected AI-powered software rebirth may not land until next year. In the meantime, reliable sources have spilled the beans on what we might expect for the next major iOS overhaul. 

Starting with the name, Apple could skip iOS 19 and could go straight from v18 to v26. We are also expecting a design overhaul, something that could draw inspiration from Vision OS. On the functional side, an AI health coach would be a huge draw for fitness enthusiasts. 

Read more