The Dark Side of Phone Apps

June 4, 2010 -

The Wall Street Journal looks into the "dark side of phone apps" in a new report about the lack of app vetting in Google's Android and Apple's iPhone app stores. While they don't cite too many examples, save some questionable banking apps that Apple banned, the paper solicits the opinions of nameless FBI and security professionals who are "concerned" about malicious software making its way into these stores and in turn on consumers' phones.

As more companies, government agencies and regular consumers use wireless devices to engage in commerce and share private information, the "bad guys" are finding new and creative ways to steal from them and profit from it.

The paper, speaking to "someone familiar with the matter," reports that the FBI's Cyber Division has begun working on these kinds of cases - specifically apps designed to compromise banking on cellphones, as well as mobile "malware" used for "espionage by foreign nations." The FBI has a standing policy that bars its employees from downloading apps on FBI-issued smartphones. The Air Force has a similar policy.

While there is some oversight for most app stores - Google's Android app store has no formal review process. The company has said in the past that it relies on its customers to report malware or other questionable apps first. While some security experts believe Google's Android Market is particularly vulnerable, Google says that it has "put in place security measures, such as remotely disabling apps found to be malicious and requiring developers to register with its Checkout payment service, and argued there's no evidence for claims that its store poses a greater risk than others."

Apple, on the other hand, vets all of its applications before they appear in its App Store, but security on that front can use some improvement too, according to some experts. The most publicized incident happened in July 2008, when Apple pulled the game called Aurora Feint from its store after it was found to be uploading users' contact lists to the game maker's servers. Apple claims that it " takes security very seriously," and that it has "a very thorough approval process and review every app." The company also claims to check the identities of every developer.

Still the iPhone isn't a perfect and safe platform - we'll leave you this scary quote from the WSJ story to think about:

Since 2008, security experts have identified at least 36 security holes in the phone's software, according to a review of the National Vulnerability Database maintained by the Department of Homeland Security. One, identified in September 2009, could have allowed hackers to learn someone's username and password from messages sent to servers when browsing the Web.

Source: WSJ

Posted in

 
Forgot your password?
Username :
Password :

Shout box

You're not permitted to post shouts.
MechaTama31AE: Probably snarky commentary on this: http://www.gamepolitics.com/2014/08/29/principle-player-leland-yee-arms-trading-case-dies08/30/2014 - 8:43pm
Andrew EisenConster - Don't know. Got a link to whatever you're referring to?08/30/2014 - 7:04pm
ConsterWait, what's this about Leland Yee eliminating witnesses?08/30/2014 - 5:50pm
IanCBroke my EA boycott to pick up Plants vs Zombies Garden Warfare. Loving it. Still hate EA though. But i like Popcap. Gah.08/30/2014 - 6:01am
MaskedPixelantehttp://m.tickld.com/x/something-you-never-realized-about-guardians-of-the-galaxy Right in the feels.08/29/2014 - 6:56pm
AvalongodAgain I think we're conflating the issue of whether Sarkeesian's claims are beyond critique (no they're not) and whether its ever appropriate to use sexist language, let alone physical threats on a woman to intimidate her (no it isn't)08/29/2014 - 5:04pm
prh99Trolling her or trying to assail her integrity just draws more attention (Streisand effect?). Which is really not what the trolls want, so the only way to win (if there is a win to be had) is not to play/troll.08/29/2014 - 5:02pm
prh99Who cares, just don't watch the damn videos if you don't like her. Personally, I don't care as far as she is concerned as long there are interesting games to be played.08/29/2014 - 4:34pm
Andrew EisenZip - And yet, you can't cite a single, solitary example. (And no one said you hated anyone. Along those lines, no one claimed Sarkeesian was perfect either.)08/29/2014 - 3:51pm
Andrew EisenSaint's Row: Gat Out of Hell was just announced for PC, PS3, PS4, Xbox 360 and Xbox One making it the 150th game For Everything But Wii U! Congratulations Deep Silver!08/29/2014 - 3:49pm
ZippyDSMleeI do not hate them jsut think its mostly hyperlobe.08/29/2014 - 3:40pm
Andrew EisenSleaker - I'd say that's likely. From my experience, most who have a problem with Sarkeesian's videos either want to hate them in the first place (for whatever reason) or honestly misunderstand what they're about and what they're saying.08/29/2014 - 3:16pm
james_fudgeWe appreciate your support :)08/29/2014 - 2:55pm
TechnogeekIt gives me hope that maybe, just maybe, the gaming community is not statistically indistinguishable from consisting entirely of people that your average Xbox Live caricature would look at and go "maybe you should tone it down a little bit".08/29/2014 - 2:49pm
TechnogeekI just want to say that while I've disagreed with the staff of this site on several occasions, it's still good to see that they're not automatically dismissing Anita's videos as a "misandrist scam" or whatever the preferred dismissive term is these days.08/29/2014 - 2:49pm
E. Zachary KnightZippy, So you can't find even one?08/29/2014 - 1:04pm
ZippyDSMleeAndrew Eisen:Right because shes prefect and never exaggerates... *rolls eyes*08/29/2014 - 12:53pm
SleakerAnd honestly, nearly all of the games she references, or images she depicts I've always cringed at and wondered why they were included in games to begin with, from pinups through explicit sexual depictions or direct abuse. I think it's cheap storytelling.08/29/2014 - 12:35pm
Sleaker@AE - aren't most people fundamentally misunderstanding her at this point? haha.. On a related note I think a lot of the backlash is coming from males that think she is telling them their 'Generic Male Fantasy' is bad and wrong.08/29/2014 - 12:33pm
Andrew EisenAnd no, I don't think the female community would be upset over the performance of a case study in and of itself. Possibly the mostivations behind such a study, the methodology or conclusions but not the mere idea of a case study.08/29/2014 - 12:29pm
 

Be Heard - Contact Your Politician