SME Times is powered by   
Search News
Just in:   • How MMS & SMS stripped Religare bare of Rs 3,000 cr  • Govt loans from RBI down to Rs 402 cr in week ended Oct 11  • Sebi tightens norms for resignation of auditors  • Trade wars, protectionism impacting global trade, investment: FM  • Concerns raised in 2016 over Boeing 737 MAX safety 
Last updated: 14 Aug, 2019  

Mobile.Chinese.9.Thmb.jpg Bugs found in backend systems of top 5,000 free Android apps

Mobile.Chinese.9.jpg
   Top Stories
» Trade wars, protectionism impacting global trade, investment: FM
» RBI Governor hints at further rate cuts
» Development of NE always top priority: Minister
» 'Defence exports to rise to Rs 35k cr'
» India calls on G-20 to take steps to revive growth
SME Times News Bureau | 14 Aug, 2019
Cybersecurity researchers have identified more than 1,600 vulnerabilities in the support ecosystem behind the top 5,000 free apps available in the Google Play Store.

While the researchers from Georgia Institute of Technology and The Ohio State University studied only applications in the Google Play Store, applications designed for iOS may share the same backend systems.

The vulnerabilities were found in the backend systems that feed content and advertising to smartphone applications through a network of Cloud-based servers.

The vulnerabilities, affecting multiple app categories, could allow hackers to break into databases that include personal information - and perhaps into users' mobile devices, said the study scheduled to be presented at the 2019 USENIX Security Symposium in the US on Thursday.

"These vulnerabilities affect the servers that are in the cloud, and once an attacker gets on the server, there are many ways they can attack," said Brendan Saltaformaggio, Assistant Professor in Georgia Tech's School of Electrical and Computer Engineering.

The researchers were still investigating whether attackers could get into individual mobile devices connected to vulnerable servers.

"It's a whole new question whether or not they can jump from the server to a user's device, but our preliminary research on that is very concerning," Saltaformaggio added.

In their study, the researchers discovered 983 instances of known vulnerabilities and another 655 instances of zero-day vulnerabilities spanning across the software layers - operating systems, software services, communications modules and web apps - of the Cloud-based systems supporting the apps.

To help developers improve the security of their mobile apps, the researchers have created an automated system called SkyWalker to vet the Cloud servers and software library systems.

SkyWalker can examine the security of the servers supporting mobile applications, which are often operated by Cloud hosting services rather than individual app developers.
 
Print the Page
Add to Favorite
 
Share this on :
 

Please comment on this story:
 
Subject :
Message:
(Maximum 1500 characters)  Characters left 1500
Your name:
 

 
  Customs Exchange Rates
Currency Import Export
US Dollar
66.20
64.50
UK Pound
87.50
84.65
Euro
78.25
75.65
Japanese Yen 58.85 56.85
As on 20 Oct, 2019
  Daily Poll
Is the Union Budget 2019 MSME-friendly?
 Yes
 No
 Can't say
  Commented Stories
» TradeIndia partners with Google to promote SMEs(1)
» Collateral free loans available for MSMEs: Minister(1)
» Credit off-take by banks slows to 8.8 pc: RBI data(1)
» MSME growth stifled by restricted access to credit, equity: Banka CFO CEO(1)
 
 
About Us  |   Advertise with Us  
  Useful Links  |   Terms and Conditions  |   Disclaimer  |   Contact Us  
Follow Us : Facebook Twitter