What your phone app doesn't say: It's watching

July 28, 2010 By JORDAN ROBERTSON , AP Technology Writer

(AP) -- Your smart phone applications are watching you - much more closely than you might like.

Lookout Inc., a mobile-phone , scanned nearly 300,000 free applications for Apple Inc.'s iPhone and phones built around Inc.'s Android software. It found that many of them secretly pull off users' phones and ship them off to third parties without notification.

That's a major concern that has been bubbling up in privacy and security circles.

The data can include full details about users' contacts, their pictures, text messages and Internet and search histories. The third parties can include advertisers and companies that analyze data on users.

The information is used by companies to target ads and learn more about their users. The danger, though, is that the data become vulnerable to hacking and use in identity theft if the third party isn't careful about securing the information.

Lookout reported its findings this week in conjunction with the computer security conference in Las Vegas.

Lookout found that nearly a quarter of the apps and almost half the Android apps contained software code that contained those capabilities.

The code had been written by the third parties and inserted into the applications by the developers, usually for a specific purpose, such as allowing the applications to run ads. But the code winds up forcing the application to collect more data on users than even the developers may realize, Lookout executives said.

"We found that not only users, but developers as well, don't know what's happening in their apps, even in their own apps, which is fascinating," said John Hering, CEO of the San Francisco-based Lookout.

Part of the problem is don't alert users to all the different types of data the applications running on them are collecting. IPhones only alert users when applications want to use their locations.

And while Android phones offer robust warnings when applications are first installed, many people breeze through them for the gratification of using the apps quickly.

Apple and Google didn't respond to requests for comment on Lookout's research.

©2010 The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistributed.

view popular send feedback to editors
4.9 /5 (14 votes)  

Filter


Move the slider to adjust rank threshold, so that you can hide some of the comments.


Display comments: newest first

mlange
Jul 28, 2010

Rank: 5 / 5 (2)
Well of course your private info is being sold. Read the phones SDK documentation. If the data can be accessed, it will and be sold 3rd parties.
Giablo
Jul 28, 2010

Rank: 3 / 5 (2)
I notice a lack of RIM(Blackberry), that makes me happy owning one.
CSharpner
Jul 28, 2010

Rank: 5 / 5 (1)
Malware in 3rd party libraries. I'm surprised it took this long. Very disapointed it happened at all. It would have been helpful if we'd been pointed to a list of known mallibs so if we happened to be using it in our own apps we're developing, WE COULD STOP!!
extropian58
Jul 28, 2010

Rank: 1 / 5 (4)
What is the big deal? You and your "private" data are not that important. At best you are a single data point among billions. Don't keep your "valuable" information on electronic devices and don't keep valuable items in your home. They steal them too. Don't like the risks of the computer age? Join the Amish, give up electricity and your "privacy" will be secure. Have at it. :)
Roj
Jul 29, 2010

Rank: 1 / 5 (1)
while Android phones offer robust warnings when applications are first installed, many people breeze through them
This is a selling point for Android phones, since users can re-install, pay attention, remove & replace offending apps.
Temple
Jul 29, 2010

Rank: 1 / 5 (2)
while Android phones offer robust warnings when applications are first installed, many people breeze through them
This is a selling point for Android phones, since users can re-install, pay attention, remove & replace offending apps.


Users had no way of knowing that their sensitive private information (including some passwords) were being sent to a third party website.

On a platform with *zero* malware protection, and which has access to lots of private data, one should expect there to be a lot of malware.

This is an extremely serious threat to Android as a viable platform.

Which apps are safe? Nobody can say.

Scary.
ngrai
Jul 29, 2010

Rank: 5 / 5 (1)
The big deal, extropian58, is that you--you infinitesimal little data point, you--become manipulable. This is not a risk caused by computers, but by human greed and lust for power and control. We have a right to freedom in the computer as in any other age. To be manipulated is not to be free.
BloodSpill
Jul 29, 2010

Rank: not rated yet
The only logical course of action should have been that apps are submitted to these marketplaces as source code (human readable) only, and then reviewed on their content.

OOPS.
james11
Jul 31, 2010

Rank: not rated yet
This is complete BS, some creepy dude is looking at my naked pics of my girlfriend. Can anyone on here convince me this power isnt being abused? No.
ScientistAmauterEnthusiast
Aug 01, 2010

Rank: not rated yet
Never cared about my information being stolen.
I have nothing to hide, what is the big deal?
Also i like being directly marketed to as apposed to being offered random not applicable rubbish.
Just do not save bank details on your phone and you will be fine :)
CSharpner
Aug 11, 2010

Rank: not rated yet
On a platform with *zero* malware protection, and which has access to lots of private data, one should expect there to be a lot of malware.

You've obviously never installed an app on an Android device, because if you did, you'd know that when you install an app, the OS tells you what types of data and hardware the app is coded to access. You have the opportunity to REFUSE the installation.

No security is perfect, but this is VERY GOOD. You don't have to worry about somebody else trying to test for you. The architecture itself knows ahead of time and notifies you.
Rank 4.9 /5 (14 votes)
Tags

smart phones, google, iphone, sensitive data, security firm, black hat, text message, app
Related Stories
more news
Relevant PhysicsForums posts
  • Calling function with no input argument
    created7 hours ago
  • Force free body diagram problem on gym equipment
    created8 hours ago
  • Empirical data regarding shower heads and water
    created15 hours ago
  • feed hold button on CNC lathe
    createdFeb 09, 2012
  • RFAC in Fortran
    createdFeb 09, 2012
  • dynamics 2/32
    createdFeb 08, 2012
  • More from Physics Forums - General Engineering

More news stories

Google users warned of threat to smartphone wallets

Users of Google smartphone wallets were being warned on Friday that there is a way to crack pass codes intended to thwart thieves from going on illicit shopping sprees.

Technology / Internet

created 11 minutes ago | popularity not rated yet | comments 0

CIA website offline, Anonymous takes credit

The website of the Central Intelligence Agency was unresponsive on Friday after the hacker group Anonymous claimed to have knocked it offline.

Technology / Internet

created 1 hour ago | popularity 5 / 5 (2) | comments 7

New error-correcting codes guarantee the fastest possible rate of data transmission

Error-correcting codes are one of the triumphs of the digital age. They’re a way of encoding information so that it can be transmitted across a communication channel — such as an optical fiber o ...

Technology / Computer Sciences

created 10 hours ago | popularity 5 / 5 (3) | comments 5 | with audio podcast

Small modular reactor design could be a 'SUPERSTAR'

(PhysOrg.com) -- Though most of today's nuclear reactors are cooled by water, we've long known that there are alternatives; in fact, the world's first nuclear-powered electricity in 1951 came from a reactor ...

Technology / Energy & Green Tech

created 9 hours ago | popularity 4.2 / 5 (10) | comments 19 | with audio podcast

Advanced power-grid model finds low-cost, low-carbon future in West

(PhysOrg.com) -- The least expensive way for the Western U.S. to reduce greenhouse gas emissions enough to help prevent the worst consequences of global warming is to replace coal with renewable and other ...

Technology / Energy & Green Tech

created 9 hours ago | popularity 3.7 / 5 (3) | comments 7 | with audio podcast


NASA sees wide-eyed cyclone Jasmine

Cyclone Jasmine's eye has opened wider on NASA satellite imagery, as it moves through the Southern Pacific Ocean.

NASA sees Giovanna reach cyclone strength, threaten Madagascar

Tropical Storm 12S built up steam and became a cyclone on February 10, 2012 as NASA's Terra satellite passed overhead. Residents of east-central Madagascar should prepare for this cyclone to make landfall ...

Complex wiring of the nervous system may rely on a just a handful of genes and proteins

Researchers at the Salk Institute have discovered a startling feature of early brain development that helps to explain how complex neuron wiring patterns are programmed using just a handful of critical genes. ...

The power of estrogen -- male snakes attract other males

A new study has shown that boosting the estrogen levels of male garter snakes causes them to secrete the same pheromones that females use to attract suitors, and turned the males into just about the sexiest ...

Humans may have helped the decline of African rainforests 3000 years ago

(PhysOrg.com) -- Large areas of rainforests in Central Africa mysteriously disappeared over three thousand years ago, to be replaced by savannas. The prevailing theory has been that the cause was a change ...

Could Venus be shifting gear?

(PhysOrg.com) -- ESA’s Venus Express spacecraft has discovered that our cloud-covered neighbour spins a little slower than previously measured. Peering through the dense atmosphere in the infrared, the ...