{"id":1866,"date":"2021-05-21T18:15:23","date_gmt":"2021-05-21T12:45:23","guid":{"rendered":"https:\/\/xiarch.com\/blog\/?p=1866"},"modified":"2021-06-07T11:38:36","modified_gmt":"2021-06-07T06:08:36","slug":"more-than-22-android-apps-disclose-over-100000000-users-sensitive-information","status":"publish","type":"post","link":"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/","title":{"rendered":"More than 22 Android Apps Disclose Over 100,000,000 User\u2019s Sensitive Information"},"content":{"rendered":"\n
Multiple Android applications leaked crucial information of more than 100 million users due to poor configuration, probable making them an advantageous target of malicious character.<\/p><\/p>\n\n\n\n
\u201cMore than millions of of user\u2019s sensitive data was exposed just because of not following best-practices when configuring and combining third-party cloud based services,\u201d said today by Check Point researchers in an analysis published and shared with The Experts.<\/p><\/p>\n\n\n\n
\u201cIn few cases, this type of maltreatment not only disturb the users, but also the developers were also left vulnerable. More on this poor configuration put user\u2019s sensitive data and developer\u2019s private resources, like access to update system, storage, etc. at high risk.\u201d<\/p><\/p>\n\n\n\n
What are the Results?<\/strong><\/h2>\n\n\n\n
The results come from a study of all the 23 android application available in the Google Play Store, some of them which have downloads ranging of about 10,000 to 10 million, some of them are Astro, Guru, iFax, Logo Maker, T\u2019Leva, Screen Recorder.<\/p><\/p>\n\n\n\n
From the CheckPoints, the concern stems from the poor configuration of real-time databases, cloud storage keys and push notifications, phone numbers, browser histories, passwords, location, and photos.<\/p><\/p>\n\n\n\n
<\/figure><\/div>\n\n\n\n
Researchers said that if the database is not secure by authentic barriers then they were able to access user\u2019s data of the Angolan taxi app T\u2019Leva, which includes communication by exchanging messages between driver and passengers as well as rider\u2019s full names, phone numbers, and pick-up locations.<\/p><\/p>\n\n\n\n
\u201cApp developers embedded keys are required for sending push notifications and accessing cloud storage services directly into the apps.\u201d The Researchers found this. This makes it easier for attackers to send a duplicate notification to all the users as the developers, but could not only make it overburdened even to straight unsuspecting users to a phishing page, which becomes an accessing point for more refined threats.<\/p><\/p>\n\n\n\n
<\/figure><\/div>\n\n\n\n
Installing cloud storage entry keys into the apps, Furthermore, opens the door to another adversary where an attacker could grip of all the data which is available in the cloud \u2013 Performance which was detected in two apps, iFax, and Screen Recorder, which gives the ability to the researchers to access faxed documents and screen recordings.<\/p><\/p>\n\n\n\n
Which Applications are Vulnerable?<\/strong><\/h2>\n\n\n\n
Only some apps change their arrangements in return for answerable disclosure, suggest users of the other apps continue to persist susceptible to probable threats like scams and identify theft, not to mention advantages but to steal the credentials and gain access to other accounts fraudulently.<\/p><\/p>\n\n\n\n
<\/figure><\/div>\n\n\n\n
Aviran Hazum said that \u201cConclusively, sufferer become vulnerable to various miscellaneous aims, such as identify theft, phishing, services swipes, impersonations, etc.\u201d Check Point\u2019s manager of mobile research, compute the study \u201cTake off light on distressing reality where app developers resides not only their data but also their user\u2019s data at high risk.\u201d<\/p><\/p>\n","protected":false},"excerpt":{"rendered":"
Multiple Android applications leaked crucial information of more than 100 million users due to poor configuration, probable making them an advantageous target of malicious character. \u201cMore than millions of of user\u2019s sensitive data was exposed just because of not following best-practices when configuring and combining third-party cloud based services,\u201d said today by Check Point researchers […]<\/p>\n","protected":false},"author":2,"featured_media":1871,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[5],"tags":[],"yoast_head":"\n
More than 22 Android Apps Disclose Over 100,000,000 User\u2019s Sensitive Information - Xiarch Solutions Private Limited<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"More than 22 Android Apps Disclose Over 100,000,000 User\u2019s Sensitive Information - Xiarch Solutions Private Limited\" \/>\n<meta property=\"og:description\" content=\"Multiple Android applications leaked crucial information of more than 100 million users due to poor configuration, probable making them an advantageous target of malicious character. \u201cMore than millions of of user\u2019s sensitive data was exposed just because of not following best-practices when configuring and combining third-party cloud based services,\u201d said today by Check Point researchers […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/\" \/>\n<meta property=\"og:site_name\" content=\"Xiarch Solutions Private Limited\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/xiarch\/\" \/>\n<meta property=\"article:published_time\" content=\"2021-05-21T12:45:23+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-06-07T06:08:36+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/05\/23-Andriod-Apps-Expose-Data-Featured-Image.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1000\" \/>\n\t<meta property=\"og:image:height\" content=\"524\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Xiarch Security\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@xiarch\" \/>\n<meta name=\"twitter:site\" content=\"@xiarch\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Xiarch Security\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/\"},\"author\":{\"name\":\"Xiarch Security\",\"@id\":\"https:\/\/xiarch.com\/blog\/#\/schema\/person\/655d814a04eacce56942270cfdc5c59c\"},\"headline\":\"More than 22 Android Apps Disclose Over 100,000,000 User\u2019s Sensitive Information\",\"datePublished\":\"2021-05-21T12:45:23+00:00\",\"dateModified\":\"2021-06-07T06:08:36+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/\"},\"wordCount\":465,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/xiarch.com\/blog\/#organization\"},\"articleSection\":[\"Breaches\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/\",\"url\":\"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/\",\"name\":\"More than 22 Android Apps Disclose Over 100,000,000 User\u2019s Sensitive Information - Xiarch Solutions Private Limited\",\"isPartOf\":{\"@id\":\"https:\/\/xiarch.com\/blog\/#website\"},\"datePublished\":\"2021-05-21T12:45:23+00:00\",\"dateModified\":\"2021-06-07T06:08:36+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/xiarch.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"More than 22 Android Apps Disclose Over 100,000,000 User\u2019s Sensitive Information\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/xiarch.com\/blog\/#website\",\"url\":\"https:\/\/xiarch.com\/blog\/\",\"name\":\"Xiarch Solutions Private Limited\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/xiarch.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/xiarch.com\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/xiarch.com\/blog\/#organization\",\"name\":\"Xiarch\",\"url\":\"https:\/\/xiarch.com\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/xiarch.com\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/06\/xi-logo-002.png\",\"contentUrl\":\"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/06\/xi-logo-002.png\",\"width\":300,\"height\":300,\"caption\":\"Xiarch\"},\"image\":{\"@id\":\"https:\/\/xiarch.com\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/xiarch\/\",\"https:\/\/twitter.com\/xiarch\",\"https:\/\/www.linkedin.com\/company\/xiarch\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/xiarch.com\/blog\/#\/schema\/person\/655d814a04eacce56942270cfdc5c59c\",\"name\":\"Xiarch Security\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/xiarch.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d33699ed91b76568586dc1ae278ea568?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d33699ed91b76568586dc1ae278ea568?s=96&d=mm&r=g\",\"caption\":\"Xiarch Security\"},\"sameAs\":[\"https:\/\/xiarch.com\/blog\/\"],\"url\":\"https:\/\/xiarch.com\/blog\/author\/vector\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"More than 22 Android Apps Disclose Over 100,000,000 User\u2019s Sensitive Information - Xiarch Solutions Private Limited","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/","og_locale":"en_US","og_type":"article","og_title":"More than 22 Android Apps Disclose Over 100,000,000 User\u2019s Sensitive Information - Xiarch Solutions Private Limited","og_description":"Multiple Android applications leaked crucial information of more than 100 million users due to poor configuration, probable making them an advantageous target of malicious character. \u201cMore than millions of of user\u2019s sensitive data was exposed just because of not following best-practices when configuring and combining third-party cloud based services,\u201d said today by Check Point researchers […]","og_url":"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/","og_site_name":"Xiarch Solutions Private Limited","article_publisher":"https:\/\/www.facebook.com\/xiarch\/","article_published_time":"2021-05-21T12:45:23+00:00","article_modified_time":"2021-06-07T06:08:36+00:00","og_image":[{"width":1000,"height":524,"url":"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/05\/23-Andriod-Apps-Expose-Data-Featured-Image.jpg","type":"image\/jpeg"}],"author":"Xiarch Security","twitter_card":"summary_large_image","twitter_creator":"@xiarch","twitter_site":"@xiarch","twitter_misc":{"Written by":"Xiarch Security","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/#article","isPartOf":{"@id":"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/"},"author":{"name":"Xiarch Security","@id":"https:\/\/xiarch.com\/blog\/#\/schema\/person\/655d814a04eacce56942270cfdc5c59c"},"headline":"More than 22 Android Apps Disclose Over 100,000,000 User\u2019s Sensitive Information","datePublished":"2021-05-21T12:45:23+00:00","dateModified":"2021-06-07T06:08:36+00:00","mainEntityOfPage":{"@id":"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/"},"wordCount":465,"commentCount":0,"publisher":{"@id":"https:\/\/xiarch.com\/blog\/#organization"},"articleSection":["Breaches"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/","url":"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/","name":"More than 22 Android Apps Disclose Over 100,000,000 User\u2019s Sensitive Information - Xiarch Solutions Private Limited","isPartOf":{"@id":"https:\/\/xiarch.com\/blog\/#website"},"datePublished":"2021-05-21T12:45:23+00:00","dateModified":"2021-06-07T06:08:36+00:00","breadcrumb":{"@id":"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/xiarch.com\/blog\/more-than-22-android-apps-disclose-over-100000000-users-sensitive-information\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/xiarch.com\/blog\/"},{"@type":"ListItem","position":2,"name":"More than 22 Android Apps Disclose Over 100,000,000 User\u2019s Sensitive Information"}]},{"@type":"WebSite","@id":"https:\/\/xiarch.com\/blog\/#website","url":"https:\/\/xiarch.com\/blog\/","name":"Xiarch Solutions Private Limited","description":"","publisher":{"@id":"https:\/\/xiarch.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/xiarch.com\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/xiarch.com\/blog\/#organization","name":"Xiarch","url":"https:\/\/xiarch.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/xiarch.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/06\/xi-logo-002.png","contentUrl":"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/06\/xi-logo-002.png","width":300,"height":300,"caption":"Xiarch"},"image":{"@id":"https:\/\/xiarch.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/xiarch\/","https:\/\/twitter.com\/xiarch","https:\/\/www.linkedin.com\/company\/xiarch"]},{"@type":"Person","@id":"https:\/\/xiarch.com\/blog\/#\/schema\/person\/655d814a04eacce56942270cfdc5c59c","name":"Xiarch Security","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/xiarch.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/d33699ed91b76568586dc1ae278ea568?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d33699ed91b76568586dc1ae278ea568?s=96&d=mm&r=g","caption":"Xiarch Security"},"sameAs":["https:\/\/xiarch.com\/blog\/"],"url":"https:\/\/xiarch.com\/blog\/author\/vector\/"}]}},"_links":{"self":[{"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/posts\/1866"}],"collection":[{"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/comments?post=1866"}],"version-history":[{"count":1,"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/posts\/1866\/revisions"}],"predecessor-version":[{"id":1872,"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/posts\/1866\/revisions\/1872"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/media\/1871"}],"wp:attachment":[{"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/media?parent=1866"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/categories?post=1866"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/xiarch.com\/blog\/wp-json\/wp\/v2\/tags?post=1866"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
![\"More](\"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/05\/23-Andriod-Apps-Expose-Data-Image.jpg\")
<\/figure><\/div>\n\n\n\n![\"More](\"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/05\/23-Andriod-Apps-Expose-Data-Image1.jpg\")
<\/figure><\/div>\n\n\n\n![\"More](\"https:\/\/xiarch.com\/blog\/wp-content\/uploads\/2021\/05\/23-Andriod-Apps-Expose-Data-Image2.jpg\")
<\/figure><\/div>\n\n\n\n