Technology: Android users beware: 146 bugs found in preinstalled apps - - PressFrom - US

Technology Android users beware: 146 bugs found in preinstalled apps

20:15  15 november  2019
20:15  15 november  2019 Source:

Remove these Android apps from your phone immediately

  Remove these Android apps from your phone immediately By now, the pattern is pretty familiar. In spite of the company stepping up its detection efforts, Google can't seem to eliminate sketchy applications from sneaking their way into the Google Play Store where they often rack up millions of downloads before being found and eliminated. The latest culprits that have been found are a handful of camera and VPN apps that have collectively racked up several hundred million downloads. The camera apps inThe latest culprits that have been found are a handful of camera and VPN apps that have collectively racked up several hundred million downloads.

Security research firm Kryptowire has again exposed a hive of potentially malicious activity by preinstalled apps on cheaply produced Android phones . In research funded by the US Department of Homeland Security, the firm found apps secretly recording audio, changing phone settings without user permission, and even granting themselves new permissions.

a traffic light: Getty Images© Provided by CBS Interactive Inc. Getty Images

Kryptowire's research is the latest in what's become a near-annual detailing of the pervasive security threats posed by manufacturer and carrier firmware found on Android devices. This year Kryptowire found 146 new vulnerabilities on phones shipped by 29 manufacturers, using a new tool that scans firmware for vulnerabilities without requiring a physical phone. Six preinstalled apps on Samsung devices accounted for 33 of the vulnerabilities.

Gmail’s dark mode begins rolling out today

  Gmail’s dark mode begins rolling out today It will turn on automatically if you use dark mode on Android 10 or iOS 13To check if dark mode has been made available to you, open Gmail, click settings, and you’ll see a new option called “Theme,” and within that, dark mode can be switched on.

When asked what could put an end to this ecosystem of cheaply produced and often dangerous software, Kryptowire CEO Angelos Stavrou pointed toward greater product accountability by Google .

"Google can demand more thorough code analysis and vendor responsibility for their software products that enter the Android ecosystems," Stavrou said in an email. "Legislators and policy makers should demand that companies are accountable for putting the security and personal information of end-users at risk."

Preinstalled apps like those found in Kryptowire's research are often small, brandless pieces of third-party software tucked into the functions of larger, branded manufacturer apps. Preinstalled apps are a particularly significant security threats, as they normally have more freedom to operate on a user's phone than other types of apps, and can be more difficult for a user to remove.

Sneaky tactics lead to millions of malware-laden Android app downloads

  Sneaky tactics lead to millions of malware-laden Android app downloads Reports of malware-laden Android apps with millions of downloads are becoming a monthly occurrence. Google recently removed 25 more apps from the Play Store after Symantec discovered that they shared similar malicious code structure. These apps, which seemed like benign photo and fashion apps, were downloaded by users over 2.1 million times. Once a user downloads the app, the executed code hides its icon and displays full-screen ads (which is similar to an issue discovered last month). The ads do not indicate which app is triggering them, and they're displayed even when the malicious app is closed, so users have no way of knowing which one to delete.

At the 2017 Black Hat cybersecurity conference in Las Vegas, Kryptowire exposed similar security threats in the inexpensive phones produced by Adups Technology, whose preinstalled software was found to send users' device data to the company's server in Shanghai without alerting those users. In 2018, Kryptowire released research into the preinstalled firmware flaws of 25 cheaply produced Android models -- the same year Google launched its Test Suite, in part to address these types of problems.

a traffic light© CNET

Despite the near-annual recurrence of Kryptowire's vulnerability exposés, Stavrou sees an arc of improvement in Google's overall security strategy.

"Securing the software supply chain is a very complex problem, and Google and the security research community are always making advances to address the problem," he said.

In a Black Hat 2019 presentation, Google security researcher Maddie Stone said an Android device often has 100 to 400 preinstalled apps. If you're a malicious actor, you "only have to convince one company to include your app, rather than thousands of users," Stone said in the presentation.

Google didn't immediately respond to CNET's request for comment.

Pre-installed apps on low-end Android phones are full of security holes .
In what has become an annual reckoning, security research company Kryptowire recently published its 2019 report on the state of manufacturer-installed software and firmware for Android devices and, to no one's surprise, they found more than 140 bugs which could be exploited for malicious purposes. The DHS-funded report uncovered 146 apps, which come pre-installed on inexpensive Android handsets, would pull shenanigans like eavesdropping through the microphone, unilaterally changing their permissions or surreptitiously transmitting data back to the manufacturer without ever notifying the user.

—   Share news in the SOC. Networks
usr: 4
This is interesting!