The Dark Side of Phone Apps

June 4, 2010 -

The Wall Street Journal looks into the "dark side of phone apps" in a new report about the lack of app vetting in Google's Android and Apple's iPhone app stores. While they don't cite too many examples, save some questionable banking apps that Apple banned, the paper solicits the opinions of nameless FBI and security professionals who are "concerned" about malicious software making its way into these stores and in turn on consumers' phones.

As more companies, government agencies and regular consumers use wireless devices to engage in commerce and share private information, the "bad guys" are finding new and creative ways to steal from them and profit from it.

The paper, speaking to "someone familiar with the matter," reports that the FBI's Cyber Division has begun working on these kinds of cases - specifically apps designed to compromise banking on cellphones, as well as mobile "malware" used for "espionage by foreign nations." The FBI has a standing policy that bars its employees from downloading apps on FBI-issued smartphones. The Air Force has a similar policy.

While there is some oversight for most app stores - Google's Android app store has no formal review process. The company has said in the past that it relies on its customers to report malware or other questionable apps first. While some security experts believe Google's Android Market is particularly vulnerable, Google says that it has "put in place security measures, such as remotely disabling apps found to be malicious and requiring developers to register with its Checkout payment service, and argued there's no evidence for claims that its store poses a greater risk than others."

Apple, on the other hand, vets all of its applications before they appear in its App Store, but security on that front can use some improvement too, according to some experts. The most publicized incident happened in July 2008, when Apple pulled the game called Aurora Feint from its store after it was found to be uploading users' contact lists to the game maker's servers. Apple claims that it " takes security very seriously," and that it has "a very thorough approval process and review every app." The company also claims to check the identities of every developer.

Still the iPhone isn't a perfect and safe platform - we'll leave you this scary quote from the WSJ story to think about:

Since 2008, security experts have identified at least 36 security holes in the phone's software, according to a review of the National Vulnerability Database maintained by the Department of Homeland Security. One, identified in September 2009, could have allowed hackers to learn someone's username and password from messages sent to servers when browsing the Web.

Source: WSJ

Posted in

 
Forgot your password?
Username :
Password :

Poll

Which group is more ethically challenged?:

Shout box

You're not permitted to post shouts.
PHX Corphad there been a sonic 4 episode 3, I would Buy it on Steam, Xbox 360 and PS3 right away07/05/2015 - 10:10pm
Andrew EisenWell, what if Konami released MGS 5 with a mandatory $60 plastic peripheral? Do you think that would help?07/05/2015 - 8:09pm
MattsworknameI dont think so, I think that between the lose of iga, kojima, and so forth, i think MGS 5 will be less succesfull then they think, and tha will spell there end.07/05/2015 - 7:08pm
Andrew EisenI'm sure the Metal Gear micro-transactions will keep 'em afloat!07/05/2015 - 6:58pm
MattsworknameKonami is dying, slowly, surely, inevitably. Capcom is in the same situation, and I think that if they don't get there respective acts together, there going to pull a thq and sell off all there IP.07/05/2015 - 6:51pm
Andrew EisenHowever, if you have a gaming PC and like PC gaming, the Wii U is arguably the best console you could get (unless you just don't care for Nintendo's games, of course).07/05/2015 - 6:07pm
Andrew EisenAnyway, if the Wii U is your only gaming platform, yeah, you're missing out on a ton of great stuff.07/05/2015 - 6:06pm
Andrew EisenMatthew is referring to my latest video, if anyone's wondering. https://www.youtube.com/watch?v=FkuL1UVHYJA07/05/2015 - 6:00pm
Matthew Wilson@AE the wiiu may have the best exclusives among consoles, but lack of third party support kills it. now if we want to play the exclusives game, the pc wins, not just in numbers,but some of the best games I have played.07/05/2015 - 5:53pm
Andrew EisenPic of the pack with measurements: https://twitter.com/paulfeig/status/61768231705475481607/05/2015 - 5:38pm
Andrew EisenThis is really cool to see. Ghostbusters director helping out cosplayers with prop pics. Here's the thrower with measurements: https://twitter.com/paulfeig/status/61735089365938995307/05/2015 - 5:37pm
Matthew Wilsonhttps://www.youtube.com/watch?v=2lMLRIwiB_c a very interesting video. by Unseen64 Tamaki. the video covers how project hammer fell apart.07/05/2015 - 3:43pm
Andrew EisenImagine if Nintendo started charging for the Super Guide feature it has in some of it's games. That's what the MGS microtransactions sound like to me.07/05/2015 - 12:36pm
PHX Corphttp://www.gamesradar.com/konami-mgs-5s-microtransactions-and-future-franchise/ Konami explains MGS 5's microtransactions & what happens after Koj07/05/2015 - 12:21pm
Andrew EisenFinished Gone Home last night. Really enjoyed that game. Very different. Definitely not for everyone though.07/05/2015 - 11:00am
InfophileI know the ZE series was in the red in Japan, but international series boosted it to profitability. That may not mean it's more profitable in the west, but it does mean ZE3 wouldn't exist without the western market.07/04/2015 - 7:54am
Consterwhy aren't "Video game players" an option on the poll? :P07/04/2015 - 5:19am
Andrew EisenThat was quick! Pretty accurate cosplay of the new Ghostbuster uniform and proton pack: https://twitter.com/mirabellemusing/status/61673135125394227207/03/2015 - 6:23pm
Matthew Wilson@mast I dont know, but I do know it got a cult fallowing here.07/03/2015 - 6:22pm
MastermuneWasn't the Zero Escape series more popular here than in Japan?07/03/2015 - 6:19pm
 

Be Heard - Contact Your Politician