New research has revealed the truly shocking situation with regard to Android mobile security. The source of this security problem is the biggest surprise that they are antivirus applications designed to protect devices and users. Comparitech found that applications with more than 28 millions of "install" were presenting "paths" that could be used in an attack and opportunities on a hacker trying to exploit vulnerabilities on the Android platform.
Overall, Comparitech tested 21 Android antivirus applications. About 47% of them failed one way or another. Three applications contained serious security vulnerabilities, including a critical vulnerability, exposing information to millions of users. Another vulnerability made an application "very easy to disable remotely" from one hacker.
And before I even mention the applications that were unable to detect a virus used during the trial or that almost all the apps were found to track them users according to comparitech researchers.
"Comparitech has spent weeks looking at popular free antivirus applications for Android," said Aaron Phillips, a Comparitech researcher, "looking for flaws in how every vendor manages privacy, safety and advertising. ”
The company's senior security researcher, Khaled Sakr, took responsibility for the test itself, examining each application, its effectiveness, the site's dashboard and any services Back-end. Applications have also been tested for dangerous licenses and built-in trackers.
The conclusion was that in many cases, the user simply did not receive what the applications promised in their descriptions Play Store. While 47% of applications failed somewhat in the tests, serious security vulnerabilities were detected in three applications.
Comparitech says it has found "incorrect internet services" affecting Vipre Mobile, AegisLab and BullGuard, which could "endanger the privacy and security of users".
The sellers have been updated and, during the months June and July, worked with Comparitech to correct the vulnerabilities before publishing the report on 1 in August. "We can confirm that all the vulnerabilities have been fixed," Comparitech said.