The Dark Side of Phone Apps

June 4, 2010 -

The Wall Street Journal looks into the "dark side of phone apps" in a new report about the lack of app vetting in Google's Android and Apple's iPhone app stores. While they don't cite too many examples, save some questionable banking apps that Apple banned, the paper solicits the opinions of nameless FBI and security professionals who are "concerned" about malicious software making its way into these stores and in turn on consumers' phones.

As more companies, government agencies and regular consumers use wireless devices to engage in commerce and share private information, the "bad guys" are finding new and creative ways to steal from them and profit from it.

The paper, speaking to "someone familiar with the matter," reports that the FBI's Cyber Division has begun working on these kinds of cases - specifically apps designed to compromise banking on cellphones, as well as mobile "malware" used for "espionage by foreign nations." The FBI has a standing policy that bars its employees from downloading apps on FBI-issued smartphones. The Air Force has a similar policy.

While there is some oversight for most app stores - Google's Android app store has no formal review process. The company has said in the past that it relies on its customers to report malware or other questionable apps first. While some security experts believe Google's Android Market is particularly vulnerable, Google says that it has "put in place security measures, such as remotely disabling apps found to be malicious and requiring developers to register with its Checkout payment service, and argued there's no evidence for claims that its store poses a greater risk than others."

Apple, on the other hand, vets all of its applications before they appear in its App Store, but security on that front can use some improvement too, according to some experts. The most publicized incident happened in July 2008, when Apple pulled the game called Aurora Feint from its store after it was found to be uploading users' contact lists to the game maker's servers. Apple claims that it " takes security very seriously," and that it has "a very thorough approval process and review every app." The company also claims to check the identities of every developer.

Still the iPhone isn't a perfect and safe platform - we'll leave you this scary quote from the WSJ story to think about:

Since 2008, security experts have identified at least 36 security holes in the phone's software, according to a review of the National Vulnerability Database maintained by the Department of Homeland Security. One, identified in September 2009, could have allowed hackers to learn someone's username and password from messages sent to servers when browsing the Web.

Source: WSJ

Posted in

 
Forgot your password?
Username :
Password :

Poll

Which group is more ethically challenged?:

Shout box

You're not permitted to post shouts.
PHX Corphttp://www.reddit.com/r/gaming/comments/3bvzy7/as_a_former_developer_theres_a_lot_of_things_i/ Reddit Games: As a former developer, there's a lot of things I wish gamers knew. Here are some of those things...07/06/2015 - 10:52am
james_fudgeI play all of my games there!07/06/2015 - 10:36am
Andrew EisenHey, have you heard of Origin? It's pretty sweet!07/06/2015 - 10:26am
MattsworknameNot sure if your being sarcastic, or if you joined up with EA's marketing department07/06/2015 - 4:01am
Andrew EisenI don't know, maybe a heaping, helping of DRM is the panacea for all that ails Konami.07/06/2015 - 1:24am
MattsworknameThe only thing thats gonna save them andrew , is walking back all the stupid they have been doing lately. At this point , ithink they did to much damage to there brand to survive07/06/2015 - 12:42am
PHX Corphad there been a sonic 4 episode 3, I would Buy it on Steam, Xbox 360 and PS3 right away07/05/2015 - 10:10pm
Andrew EisenWell, what if Konami released MGS 5 with a mandatory $60 plastic peripheral? Do you think that would help?07/05/2015 - 8:09pm
MattsworknameI dont think so, I think that between the lose of iga, kojima, and so forth, i think MGS 5 will be less succesfull then they think, and tha will spell there end.07/05/2015 - 7:08pm
Andrew EisenI'm sure the Metal Gear micro-transactions will keep 'em afloat!07/05/2015 - 6:58pm
MattsworknameKonami is dying, slowly, surely, inevitably. Capcom is in the same situation, and I think that if they don't get there respective acts together, there going to pull a thq and sell off all there IP.07/05/2015 - 6:51pm
Andrew EisenHowever, if you have a gaming PC and like PC gaming, the Wii U is arguably the best console you could get (unless you just don't care for Nintendo's games, of course).07/05/2015 - 6:07pm
Andrew EisenAnyway, if the Wii U is your only gaming platform, yeah, you're missing out on a ton of great stuff.07/05/2015 - 6:06pm
Andrew EisenMatthew is referring to my latest video, if anyone's wondering. https://www.youtube.com/watch?v=FkuL1UVHYJA07/05/2015 - 6:00pm
Matthew Wilson@AE the wiiu may have the best exclusives among consoles, but lack of third party support kills it. now if we want to play the exclusives game, the pc wins, not just in numbers,but some of the best games I have played.07/05/2015 - 5:53pm
Andrew EisenPic of the pack with measurements: https://twitter.com/paulfeig/status/61768231705475481607/05/2015 - 5:38pm
Andrew EisenThis is really cool to see. Ghostbusters director helping out cosplayers with prop pics. Here's the thrower with measurements: https://twitter.com/paulfeig/status/61735089365938995307/05/2015 - 5:37pm
Matthew Wilsonhttps://www.youtube.com/watch?v=2lMLRIwiB_c a very interesting video. by Unseen64 Tamaki. the video covers how project hammer fell apart.07/05/2015 - 3:43pm
Andrew EisenImagine if Nintendo started charging for the Super Guide feature it has in some of it's games. That's what the MGS microtransactions sound like to me.07/05/2015 - 12:36pm
PHX Corphttp://www.gamesradar.com/konami-mgs-5s-microtransactions-and-future-franchise/ Konami explains MGS 5's microtransactions & what happens after Koj07/05/2015 - 12:21pm
 

Be Heard - Contact Your Politician