Device privacy is an issue facing large enterprises and users. And even more so when data comes about another theft of user’s private information
Researchers at the International Institute of Computer Science (ICSI) discovered up to 1,325 Android applications that collected information from the devices on which they were hosted even after users explicitly denied permissions.
The study looked at more than 88,000 applications from the Google Play store and tracked how they transferred information when permissions were denied. In this way, the 1,325 apps that broke Android permissions used tools hidden in their code to obtain personal information that they could steal from sources such as Wifi connections and the metadata stored in photographs. The apps compiled information such as location.
Thus, according to the same information, technology companies have mountains of personal information about millions of people, including where they have been, who their friends are, and what their tastes or interests are. Serge Egelman, director of usable security and privacy research at ICSI, presented the study in late June at the U.S. Federal Trade Commission’s privacy conference, noting that “consumers have very few tools and signals they can use to reasonably control and make decisions about their privacy. “If app developers can turn the system around, asking consumers for permission is relatively nonsense,” he said. For this reason, and according to the same information, researchers notified Google of these problems in September last year, as to the Federal Trade Commission. The technology company said it would tackle those issues with Android Q, the operating system whose official version is expected this year.