The Dark Side of Phone Apps

June 4, 2010 -

The Wall Street Journal looks into the "dark side of phone apps" in a new report about the lack of app vetting in Google's Android and Apple's iPhone app stores. While they don't cite too many examples, save some questionable banking apps that Apple banned, the paper solicits the opinions of nameless FBI and security professionals who are "concerned" about malicious software making its way into these stores and in turn on consumers' phones.

As more companies, government agencies and regular consumers use wireless devices to engage in commerce and share private information, the "bad guys" are finding new and creative ways to steal from them and profit from it.

The paper, speaking to "someone familiar with the matter," reports that the FBI's Cyber Division has begun working on these kinds of cases - specifically apps designed to compromise banking on cellphones, as well as mobile "malware" used for "espionage by foreign nations." The FBI has a standing policy that bars its employees from downloading apps on FBI-issued smartphones. The Air Force has a similar policy.

While there is some oversight for most app stores - Google's Android app store has no formal review process. The company has said in the past that it relies on its customers to report malware or other questionable apps first. While some security experts believe Google's Android Market is particularly vulnerable, Google says that it has "put in place security measures, such as remotely disabling apps found to be malicious and requiring developers to register with its Checkout payment service, and argued there's no evidence for claims that its store poses a greater risk than others."

Apple, on the other hand, vets all of its applications before they appear in its App Store, but security on that front can use some improvement too, according to some experts. The most publicized incident happened in July 2008, when Apple pulled the game called Aurora Feint from its store after it was found to be uploading users' contact lists to the game maker's servers. Apple claims that it " takes security very seriously," and that it has "a very thorough approval process and review every app." The company also claims to check the identities of every developer.

Still the iPhone isn't a perfect and safe platform - we'll leave you this scary quote from the WSJ story to think about:

Since 2008, security experts have identified at least 36 security holes in the phone's software, according to a review of the National Vulnerability Database maintained by the Department of Homeland Security. One, identified in September 2009, could have allowed hackers to learn someone's username and password from messages sent to servers when browsing the Web.

Source: WSJ

Posted in

 
Forgot your password?
Username :
Password :

Poll

Will the FCC preempt state laws that limit municipal broadband services?:

Shout box

You're not permitted to post shouts.
Andrew EisenBecause it would be cool, would serve the game's fantastic art direction well and encourage people who've already played it to buy it again.08/01/2014 - 7:42pm
ZippyDSMleeWhy bother with an HD relese just repack the damn thing and promote it since it will play on the WIIU anyway....08/01/2014 - 7:04pm
Andrew EisenPlus, with Nintendo carrying the Wii U almost all by itself, it could help plug one of the unfortunately inevitable release schedule gaps.08/01/2014 - 3:23pm
Andrew EisenAn HD re-release would be cool though. It's a great game (and quite the looker, especially when up-rezzed) and more people should play it (the game had a limited release at a time when the Wii was all but dead an buried).08/01/2014 - 3:21pm
E. Zachary KnightSo no, people are not going to need to play the Wii game to undstand or enjoy the Wii U game.08/01/2014 - 1:27pm
E. Zachary KnightFrom what I understand, the two games have as much to do with eachother as Final Fantasy and Final Fantasy 2.08/01/2014 - 1:26pm
MaskedPixelanteIt's my secret hope that Nintendo announces Xenoblade HD to be released in the leadup to Xenoblade Chronicles X, or at least a mass market version of the first game so that people aren't going into this one blind.08/01/2014 - 12:40pm
PHX CorpI'm going to do a test stream later today, if anyone is intrested07/31/2014 - 2:40pm
Andrew EisenYes, I'm such a big Nintendo dork that I read Nintendo's quarterly financial reports.07/31/2014 - 2:09pm
Andrew EisenCool tidbit - Mario Kart 8 sales account for more than half of total Wii U software sales for the last quarter even though it was only available for the last third.07/31/2014 - 2:09pm
Andrew EisenStill a pretty cool promotion. Unfortunately for me, I'm not interested in purchasing Mario Kart 8 and I already owned or didn't want any of the free games on offer.07/31/2014 - 1:43pm
Andrew EisenInteresting that EU had 10 games to choose from while North America only had four.07/31/2014 - 1:41pm
MaskedPixelanteIt certainly worked, I probably would never have bought Mario Kart 8 if it didn't come with a free copy of Wind Waker HD.07/31/2014 - 1:14pm
Andrew EisenI imagine will see similar promotions like "Buy Mario Kart 8 get a download code for one of these specific games" but almost certainly not for all of its (however you would define) biggest releases.07/31/2014 - 11:24am
MaskedPixelanteI wonder if Nintendo is going to be doing "buy one get one free" promos for all their biggest releases going forward.07/31/2014 - 10:48am
MaskedPixelantehttp://www.mcvuk.com/news/read/special-report-retail-revolt-over-pc-code-strippers/013614007/31/2014 - 8:27am
ZippyDSMleeWouldn't they be able to afford and get done in a timely manner a general gba emluator for the 3DS? It seems to me if they want to make money off sales they need to do it.07/31/2014 - 7:25am
Sora-ChanAmbassador program, that's what I was looking for. Anyway the other games that have been made no longer exclusive to the early adopters got updates in their software. It'll only be a matter of time more than likely for the GBA to get the same treatment.07/31/2014 - 5:35am
Sora-ChanI might be naming it incorrectly when I say "founder" i mean the program for earlier adopters.07/31/2014 - 5:34am
Sora-Chanthe 3DS's GBA emulator was a rush job due to the founder program. No other GBA titles have been released on the 3DS yet. If/When they do get around to it, they'll more than likely update the emulation software.07/31/2014 - 5:32am
 

Be Heard - Contact Your Politician