Researchers find 1,000 insecure Android apps; SSL Vulnerabilities Expose Data

Discussion in 'Android Tablet News' started by dgstorm, Oct 22, 2012.

  1. dgstorm

    dgstorm Editor in Chief Staff Member

    Joined:
    Jan 5, 2011
    Messages:
    2,205
    Likes Received:
    130
    Trophy Points:
    310
    [​IMG]

    According to a new study by German researchers from Leibniz University in Hannover and Philipps University of Marburg, a large swath of Android apps apparently do not implement their SSL correctly. The researchers sampled 13,000 apps and found that 1,000 of them exposed users' personal data. Here's a quote with a few more details,

    The researchers were able to determine that it wasn't really a flaw in Android, so much as it was sloppy or lazy implementation of the SSL. This seems rather disturbing. What do you guys think?

    Thanks for the tip, furbearingmammal!

    Source: Android apps get SSL wrong, expose personal data ? The Register
     
  2. desertknit1

    desertknit1 Member

    Joined:
    Jul 28, 2012
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    60
    Location:
    Joshua Tree, CA, USA
    Tablet / Device:
    ZTE V9
    Is there a list of the apps that they found?
    How do I figure out whether or not the apps I use, use SSL correctly?

    17,000 apps is a hell of a lot of sloppy/crooked developers

    Sent from my DROID2 using Tapatalk 2
     
  3. desertknit1

    desertknit1 Member

    Joined:
    Jul 28, 2012
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    60
    Location:
    Joshua Tree, CA, USA
    Tablet / Device:
    ZTE V9
    EDIT: 1,000 (sorry devs) 1,000 bad apps is still a hell of a lot of sloppy and/or crooked developers.


    Sent from my DROID2 using Tapatalk 2
     
  4. desertknit1

    desertknit1 Member

    Joined:
    Jul 28, 2012
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    60
    Location:
    Joshua Tree, CA, USA
    Tablet / Device:
    ZTE V9

Share This Page