Many Android apps said to have security flaws that could expose info

April 17, 2013 at 5:03 PM   |   Comments

DAVIS, Calif., April 17 (UPI) -- Many texting, messaging and blogging apps developed for Android smartphones have security flaws that may expose private information, U.S. researchers say.

The flaws in the popular programs could also allow forged fraudulent messages to be posted, computer scientists at the University of California, Davis, reported.

The security flaws were identified by the researchers who collected about 120,000 free apps for the Android platform, which has about a half-billion users worldwide.

Malicious code can invade the vulnerable programs because developers inadvertently left parts of the app code public that should have been locked up, graduate student Dennis (Liang) Xu said.

"It's a developer error," he said. "This code was intended to be private but they left it public."

Among the vulnerable programs identified by the researchers are popular messaging apps like Handcent SMS, which has a password-protected inbox they said is vulnerable to attack, and the WeChat instant messaging service and Weibo microblogging service, both widely used in China.

Zhendong Su, UC Davis professor of computer science, said that his research team has notified the app developers of the problems, although it hasn't had a response.

Topics: UC Davis
© 2013 United Press International, Inc. All Rights Reserved. Any reproduction, republication, redistribution and/or modification of any UPI content is expressly prohibited without UPI's prior written consent.
Recommended UPI Stories
Featured UPI Collection
2014: The Year in Music [PHOTOS]

2014: The Year in Music [PHOTOS]

Most Popular
Whale spotted in Virginia's Elizabeth River
Curiosity rover escapes hidden Mars sand trap
Navy aviation tests combined unmanned, manned operations
Bill Gates to Mark Zuckerberg: I'll take the ice bucket challenge, and improve it
Latvia boasts world's first net for migrating bats
Trending News