Mobile apps sharing usernames, passwords, credit card details with third parties: Study

Agencies
July 8, 2018

Washington, Jul 8: Some popular smartphone apps may be secretly taking screenshots of your activity and sending them to third parties, a study has found. This is particularly disturbing because these screenshots - and videos of your activity on the screen - could include usernames, passwords, credit card numbers, and other important personal information, researchers said.

"We found that thousands of popular apps have the ability to record your screen and anything you type," said David Choffnes, a professor at Northeastern University in the US.

"That includes your username and password, because it can record the characters you type before they turn into those little black dots," said Choffnes.

The study was designed to investigate a persistent urban legend that phones are secretly recording our conversations and then selling that information to companies so they can pepper you with targeted advertisements.

While the researchers found no evidence of recorded conversations, they discovered activity that could be even more dangerous.

"We knew we were looking for a needle in a haystack, and we were surprised to find several needles," said Choffnes.

What they found is that some companies were sending screenshots and videos of user phone activities to third parties. Although these privacy breaches appeared to be benign, they emphasised how easily a phone's privacy window could be exploited for profit.

"This opening will almost certainly be used for malicious purposes," said Christo Wilson, a professor at Northeastern.

"It's simple to install and collect this information. And what's most disturbing is that this occurs with no notification to or permission by users," said Wilson.

"In the case we caught, the information sent to a third party was zip codes, but it could just as easily have been credit card numbers," he said.

The researchers analysed over 17,000 of the most popular apps on the Android operating system, using an automated test programme written by the students.

Although the study was conducted on Android phones, researchers said there is no reason to believe that other phone operating systems would be less vulnerable.

In all, 9,000 of the 17,000 apps had the potential to take screenshots.

"In one case, the app took video of the screen activity and sent that information to a third party," said Wilson.

That app was GoPuff, a fast-food delivery service, which sent the screenshots to Appsee, a data analytics firm for mobile devices. All this was done without the awareness of app users.

Researchers emphasised that neither company appeared to have any nefarious intent. They said that web developers commonly use this type of information to debug their apps and improve the user experience.

However, that does not mean a malicious company could not use this privacy window to steal personal information for profit.

"That has the potential to be much worse than having the camera taking pictures of the ceiling or the microphone recording pointless conversations. There is no easy way to close this privacy opening," said Choffnes.

Comments

Add new comment

  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
November 18,2024

Advisors to US President-elect Donald Trump have instructed his allies and associates to refrain from using the inflammatory language they previously employed when discussing issues related to migrants and the deportation of asylum seekers, in a bid to avoid “looking like Nazis.”

US media reports said that Trump’s associates had been asked to stop using the word “camps” to describe potential facilities that would be used to accommodate migrants rounded up in deportation operations across the country.

The reports said the US president-elect’s allies had been ordered to stave off such charged terms as they would bring to mind “Nazis,” and be used against Trump.

“I have received some guidance to avoid terms, like ‘camps,’ that can be twisted and used against the president, yes,” one Trump ally told American monthly magazine Rolling Stone.

“Apparently, some people think it makes us look like Nazis.”

The presidential advisers also cautioned surrogates and allies to keep racist terms, which have dogged Trump’s campaign, out of their remarks.

They said with Trump’s heated rhetoric that used to compare undocumented immigrants to “animals” and his slight that they are “poisoning the blood of our country,” detractors did not need to reach too far to find parallels to Nazi Germany.

Stephen Miller, who Trump tapped to be his deputy chief of staff of policy, specifically used the word “camps” to describe holding facilities that he hoped the military could put together for immigrants.

Tom Homan, who served as the acting director of Immigration and Customs Enforcement and is chosen by Trump to be in charge of the US borders, was no stranger to such language.

“It’s not gonna be a mass sweep of neighborhoods,” he said in an interview earlier this week. “It’s not gonna be building concentration camps. I’ve read it all. It’s ridiculous.”

Becoming a little more forthright about the new government’s aggressive deportation plans, Homan likened the early days of the Trump administration to the initial invasion of Iraq in 2003.

“I got three words for them – shock and awe,” he said. “You’re going to see us take this country back.”

Trump made immigration a central element of his 2024 presidential campaign but unlike his first run, which was mainly focused on building a border wall, he has shifted his attention to interior enforcement and the removal of undocumented immigrants already in the United States.

People close to the US president and his aides are laying the groundwork for expanding detention facilities to fulfill his mass deportation campaign promise.

The businessman-turned-politician deported more than 1.5 million people during his first term.

The figure do not include the millions of people turned away at the border under a Covid-era policy enacted by Trump and used during most of Biden’s term.

Comments

Add new comment

  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
November 14,2024

srirang.jpg

Bengaluru: The Prime Minister Narendra Modi led union government has requested the Karnataka High Court to direct the Mandya district administration and the state government to clear a madrasa operating within the premises of the historic Jama Masjid in Srirangapatna.

The Waqf Board, opposing this move, has claimed the mosque as its property and defended the right to conduct madrasa activities there.

The matter was brought before a division bench headed by Chief Justice N V Anjaria following a public interest litigation filed by a person named Abhishek Gowda from Kabbalu village in Kanakapura taluk. The petition alleged “unauthorised madrasa activities” within the mosque.

Representing the Central government, Additional Solicitor General of India for High Court of Karnataka, K Arvind Kamath argued that the Jama Masjid was designated as a protected monument in 1951, yet unauthorised madrasa operations continue there.

He noted that concerns over potential law and order issues have so far prevented any intervention. Kamath urged the court to direct the Mandya district administration to take action and vacate the madrasa from the mosque.

In defence, lawyers for the state government and the Waqf Board contested this request, stating that the Waqf Board had been recognised as the owner of the property since 1963 and, thus, conducting madrasa activities there is lawful.

After hearing both sides, the bench adjourned the case for further arguments, scheduling the next hearing for November 20.

Comments

Add new comment

  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
November 22,2024

bjpprotest.jpg

Bengaluru, Nov 22: For the second day running, the Karnataka BJP on Friday staged a statewide protest condemning the government’s alleged move to notify land of farmers as Waqf property.

The BJP staged a protest before the offices of Deputy Commissioners at district headquarters.

The BJP leaders are vehemently demanding that the state government cancel a 1974 Gazette notification in this regard.

The agitators are also demanding scrapping of the Waqf Board and the resignation of Chief Minister Siddaramaiah and Minister for Waqf and Housing Zameer Ahmad Khan.

The BJP MLAs, MLCs, MPs gathered in the premises of Freedom Park and staged a protest under the leadership of Leader of Opposition R. Ashoka and slammed the state government.

MLA T.S. Srivatsa led the protest in Mysuru and hundreds of party workers and farmers staged the protest under the leadership of former MP Pratap Simha in Kodagu.

Former MP Sumalatha Ambareesh led the agitation in Mandya.

This was the first time that Sumalatha took part in the party’s programme after the Lok Sabha elections.

State President B.Y. Vijayendra claimed, “The Congress government in Karnataka is issuing notices to farmers claiming the ownership of their lands to the Waqf Board and pushing them on the streets overnight.”

In the first week of December, three teams formed by the BJP will travel across the state and record the grievances of farmers.

“The state government is attempting to snatch away the lands belonging to temples as well,” Vijayendra alleged and added that the teams would comprise all senior leaders of the BJP.

Meanwhile, the police have taken Sri Ram Sena chief Pramod Muthalik into custody while staging a protest march to the office of Zameer Ahmad Khan in Bengaluru.

Muthalik along with Hindutva activists was planning to lay siege to Zameer’s office over the Waqf row.

The police stopped Muthalik and requested him to submit the memorandum by reaching the minister’s office in a vehicle. However, Muthalik refused to go with the police and continued his footmarch. The police took him into custody following arguments.

Comments

Add new comment

  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.