A report released by Check Point revealed that 23 Android were responsible for exposing the personal data of 100 million users.
Cybersecurity companies are gaining a lot of business and notoriety. And it’s all about the importance we’ve given to the online world. Personal data, home addresses, social security numbers, credit card details, honestly, the amount of personal information we store online is endless. Consequently, there is also no end to the amount of turmoil that users can cause such as hackers and spam bots. This is where cybersecurity companies come into play. When before they were only responsible for establishing security for large companies, now they can be hired individually. Many even conduct their own research on related issues unhurriedly, building a repertoire that will prove useful in the line of jobs.
Check Point conducted this research and we will delve into it accordingly. The US-based cybersecurity firm released a detailed report on its findings in this regard. The security flaw shared by all these 23 Android apps revolves around authentication. Let’s explain it. Today, many applications store their data on devices such as the cloud, which prevents them from constantly adding and deleting data from the physical device. This requires real-time data sharing with cloud-based service, and that’s where our problems begin.
Many applications, as Check Point pointed out, had made the simple mistake of leaving all their data unencrypted. While there are a wide range of ways to make this mistake, the result is ultimately just as exploitable. It is a classic case of developer incompetence and can cost any kind of harm to users. From personal identification (i.e. name, address, and photos) to passwords, there is a lot of user data at stake. While Check Point has not necessarily disclosed the names of our 23 apps, it has very much identified the issue as a developer mediator.
Many developers, instead of correcting its weakness, have apparently tried to cover it up to avoid identification. Regardless, by using malware identifiers, developers were caught in repetition. Finally, Check Point claims that while only 23 have been identified, there could still be many more flying under the radar.