— Judging by your appearance, it would have been better if you hadn't tried? Have you found trouble again?
— Oh, boss! You call it too softly — trouble. I call it something much worse! A nightmare! Black and hopeless. We analyzed almost 3,500 free and paid mobile apps on Google Play. And 63% of Android apps had vulnerabilities, with the average number of problems per app being 39.
The problems affect not only free apps and games, but also banking and payment programs. The most vulnerable programs were those from the "Top Free Games" category - 96% of them contained vulnerable components. Next come "Top Profitable" (94%) and banking applications (88%).
3,000 unique vulnerabilities were discovered, which were detected over 82,000 times. In total, 73% of the vulnerabilities were first discovered over two years ago. However, they are still present!
— Wait, so the vulnerabilities were discovered more than two years ago, and you're still discovering them?
— Yes! That’s the problem. Many latvia mobile database were also found in educational applications (43%), productivity software (41%), and financial programs (39%). Moreover, most vulnerabilities can be fixed if developers take care to conduct an audit.
- But developers don't undergo audit? Am I right?
- Unfortunately, yes.
- And what do you propose to do?
— I propose to oblige our developers to undergo an audit once a year! Moreover, to prohibit the use of all financial applications in the empire that have not passed the audit! And to assign some kind of sign to those that have passed the audit. Naturally, to conduct a media campaign. And to prohibit state companies from purchasing software that has not passed the audit!
- Well, this conversation requires continuation by the Emperor and the Prime Minister. Get ready. The deadline is three days. We will report together. You know how to see the problem. Well done!
Do you realize the problem of Android app security ? Really? Think about it!