85% of COVID-19 tracking apps leak data

2020-09-30 03:30

All 100 apps were analyzed using an array of static application security testing and dynamic application security testing techniques based on the OWASP mobile app security guidelines.

The vast majority of medical apps have mishandled and/or weak encryption that puts them at risk for data exposure and IP theft.

34% of Android apps and 28% of iOS apps are vulnerable to encryption key extraction.

The majority of mHealth apps contain multiple security issues with data storage.

60% of tested Android apps stored information in SharedPreferences, leaving unencrypted data readily readable and editable by attackers and malicious apps.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/DwRCBFrf-f4/

#covid19 #leak #tracking