Continuing vulnerabilities in security are plaguing Android developers and according to a report released by Trend Micro Inc, and hackers and spyware seem to be making inroads on iOS attacks as well.
Two Peas In A Pod
The company released its quarterly roundup for security recently which included a section in which mobile concerns were talked about which outlined how around 3/4th of all users with the Android platform were in trouble because of the FakeID vulnerability along with the browser flaw in Android. This has resulted in a big problem for developers who need to get around it.
The vulnerabilities are further complicated with the disintegration of the android OS along with security solutions being released and not being available for some of the operating system versions. In this case users that rely on older Android phones are at times even left out of the update loop entirely.
All About The Flaws
The report stated that the security flaw not only allowed apps to mimic those apps which are legitimate, it could also opens up the default browser of android to serious threats in which attackers can potentially get their hands on data and information that had been registered onto legtitimate websites that weren’t trying to harm their users.
Even apps that are entire legitimate can be fairly weak. Apps that rely on SDK cards for their in-app payment mechanisms can get compromised fairly fast. The Google Wallet itself is not safe, even the Alipay (a Chinese payment solution) which is gaining popularity can be compromised. Apps like Spotify and Evernote had their own share of the vulnerability pie, however, these were fixed by the vendors promptly.
As greater numbers of android vulnerabilities are found (and as updates remains fragmented) there are high chances for cybercriminals to exploit such cell phones.
The Same Problem
While the iOS is thought of by many to be a much safer platform, it too can be tricky since a malware known as the IOS_APPBUYER has been identified, and it has been inflicting its wrath on devices which have been jail broken. This just proves that while the iOS is considered to be safer, cybercriminals and hackers are still looking for methods through which they can bypass the security measures found on the iOS.
As things stand app builders are now increasingly trying to develop response teams and processes that can deal with such vulnerabilities as they come. Google itself is pretty active on the problem and is trying to release as many hotfixes, patches and enhancements as often and as soon as possible. Android users that are able to get updates are able to secure themselves to a very large extent. It isn’t just Google, even mobile manufacturers are joining the game and reacting faster than they used to, to roll out updates for the users so that they may stay safe.
The problem isn’t the speed at which updates and fixes come out, it’s the speed with which malware and hackers are multiplying and evolving. What we have seen in 2014 is unprecedented, no one ever could have predicted that these issues will mushroom the way they have.