1. Home
  2. Mobile apps sharing usernames, passwords, credit card details with third parties: Study

Mobile apps sharing usernames, passwords, credit card details with third parties: Study

Agencies
July 8, 2018

Washington, Jul 8: Some popular smartphone apps may be secretly taking screenshots of your activity and sending them to third parties, a study has found. This is particularly disturbing because these screenshots - and videos of your activity on the screen - could include usernames, passwords, credit card numbers, and other important personal information, researchers said.

"We found that thousands of popular apps have the ability to record your screen and anything you type," said David Choffnes, a professor at Northeastern University in the US.

"That includes your username and password, because it can record the characters you type before they turn into those little black dots," said Choffnes.

The study was designed to investigate a persistent urban legend that phones are secretly recording our conversations and then selling that information to companies so they can pepper you with targeted advertisements.

While the researchers found no evidence of recorded conversations, they discovered activity that could be even more dangerous.

"We knew we were looking for a needle in a haystack, and we were surprised to find several needles," said Choffnes.

What they found is that some companies were sending screenshots and videos of user phone activities to third parties. Although these privacy breaches appeared to be benign, they emphasised how easily a phone's privacy window could be exploited for profit.

"This opening will almost certainly be used for malicious purposes," said Christo Wilson, a professor at Northeastern.

"It's simple to install and collect this information. And what's most disturbing is that this occurs with no notification to or permission by users," said Wilson.

"In the case we caught, the information sent to a third party was zip codes, but it could just as easily have been credit card numbers," he said.

The researchers analysed over 17,000 of the most popular apps on the Android operating system, using an automated test programme written by the students.

Although the study was conducted on Android phones, researchers said there is no reason to believe that other phone operating systems would be less vulnerable.

In all, 9,000 of the 17,000 apps had the potential to take screenshots.

"In one case, the app took video of the screen activity and sent that information to a third party," said Wilson.

That app was GoPuff, a fast-food delivery service, which sent the screenshots to Appsee, a data analytics firm for mobile devices. All this was done without the awareness of app users.

Researchers emphasised that neither company appeared to have any nefarious intent. They said that web developers commonly use this type of information to debug their apps and improve the user experience.

However, that does not mean a malicious company could not use this privacy window to steal personal information for profit.

"That has the potential to be much worse than having the camera taking pictures of the ceiling or the microphone recording pointless conversations. There is no easy way to close this privacy opening," said Choffnes.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
July 1,2020

Washington, Jul 1: The United States has approved four coronavirus vaccine candidates for clinical trials, Food and Drug Administration (FDA) head Stephen Hahn told reporters.

"Four vaccines have been approved for moving into clinical trials... and another six are in the pipeline for us to review," Hahn said during a press briefing on Tuesday.

The US Administration launched in May Operation Warp Speed, a joint project of Health and Defense Departments, which aims to deliver 300 million doses of a vaccine for COVID-19 by January 2021.

The country's top pandemics expert Anthony Fauci warned on Tuesday, however, that there is no certainty the United States will be able to develop a vaccine against COVID-19 that works and will be safe.

Data on vaccine effectiveness, he added, may be available in the winter or early next year.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
Agencies
February 5,2020

New Delhi, Feb 5: Days after a gunman opened fire in Delhi's Shaheen Bagh, the epicentre of anti-CAA movement, YouTuber Gunja Kapoor was detained at the protest site on Wednesday after she was caught covertly filming the protests in a burqa.

Kapoor runs the channel ‘Right Narrative’ on YouTube and her pinned tweet on Twitter says she is followed on the microblogging site by PM Narendra Modi.

According to police, the protesters turned suspicious after Kapoor asked them "too many questions". She was caught by some of the women protesters after they identified her as the popular YouTuber. The incident led to a commotion at Shaheen Bagh, the epicentre of protests against the Citizenship Amendment Act (CAA), a senior police official said.

She was taken to Sarita Vihar police station where her identity was ascertained, police said.

The incident sparked outrage on social media. Many took to Twitter to question why Kapoor was at the protest in disguise. Others expressed concern about her motives at secretly filming the protests.

Meanwhile, praises flew in for the women of Shaheen Bagh who can be seen defending Kapoor from angry protesters after she was caught.

This is not the first time that a right wing social media activist has landed in trouble in Shaheen Bagh where residents and other women and children have been sitting in protest for nearly two months since the passing of the contentious Citizenship Amendment Act 2019 in December last year.

In January, Deepa Sharma had posted videos online about the "traumatic" experience she had when she was allegedly heckled and harassed by Shaheen Bagh protesters. While the woman's claim could never be verified, other pieces of rampant fake news aimed at delegitimising and villainising protesters has taken social media by storm.

From doctored videos of women protesters allegedly accepting they were paid Rs 500 to attend protests to alleged fights over biriyani and anti-India sloganeering, trolls on social media seem to be working overtime to taint the ongoing protests.

The latter, however, show no signs of giving up. In fact, as Delhi nears elections on February 8, protesters have arranged for music performances by eminent artists, including pop celebrity Prateek Kuhad, till February 7.

Sit in protests take place 24x7 with women showing up in thousands to spend the night and sing songs of protest. And with polls around the corner, the protests have become an active part of political discourse with Aam Aadmi Party's Manish Sisodia expressing his support for the protesters at a recent press conference.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
June 30,2020

Beijing, June 30: China said on Tuesday it was concerned about India’s decision to ban Chinese mobile apps such as Bytedance’s TikTok and Tencent’s WeChat and was making checks to verify the situation.

Chinese foreign ministry spokesman Zhao Lijian told reporters during a daily briefing that (the Prime Minister Narendra Modi-led government of) India has a responsibility to uphold the rights of Chinese businesses.

India on Monday banned 59, mostly Chinese, mobile apps in its strongest move yet targeting China in the online space since a border crisis erupted between the two countries this month.

The apps are “prejudicial to the sovereignty and integrity of India, the defence of India, the security of state and public order", the ministry of information technology said in a statement, which came two weeks after 20 Indian Army personnel were killed in a violent clash on the India-China border in Ladakh.

The companies have been invited to offer clarifications before a government panel, which will decide whether the ban can be removed or will stay.

The move also came ahead of military and diplomatic talks between India and China scheduled this week.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.