Mobile applications are now used for making online transactions and many other things. Recently a study has been carried out and found that the way it deals the data leaves it vulnerable for cybercriminals to hack personal information.
German Researchers studied the applications and discovered 56 million items of unprotected data. The vulnerability was due to the way the developer develop the application and the way in which they validate users while storing their data in online databases.
Such services has been offered for the developers to protect the data but many use the default options without implementing the security features that are offered.
An attacker can easily without any effort remove and twist those tokens in the app which grants the entry to the private data of the users.
The news has been conveyed to Google, Amazon and Apple. Apple staff conveyed that they will warn the users about the security settings and Amazon did not reply and Google refused to comment. Facebook said that the company is working with affected developers.
Security of user data on mobile applications are likely to be more in danger than those running on desktop or laptop computers. The main problem with the vulnerability is that due to the developer not including the security features.
The amount of effort to compromise data by exploiting app vulnerabilities is far less than the effort to exploit Heartbleed.
P.S : The post is to create awareness and not to create any negative impact.
No comments:
Post a Comment