Read Full Article here… lifehacker.com

Photo: quietbits (Shutterstock) According to a report by Check Point Research , many popular Android apps put your personal data at risk due to poorly secured third-party services. The report highlights several different security flaws affecting 23 different apps available on Google Play, each with anywhere from 50,000 to 10 million downloads. Most of the offending apps collect and store user information, developer data, and internal company resources using unsecured real-time databases and cloud storage services. The security researchers were able to find the unsecured cloud databases from 13 apps, meaning outsider actors can also access them. Other apps have improperly configured push notification managers, which hackers could use to intercept and modify seemingly legitimate notifications from the developers, seeding them with malware, phishing links, or misleading content. These vulnerabilities put at least 100 million Android users at risk of fraud, identity theft, and malware attacks. What Android apps are putting your data at risk? Check Point Research says it found one or more of these flaws in 23 apps, 13 of which had openly accessible real-time databases. However, the report only calls out five of these apps by name: Astro Guru: A horoscope app with over 10 million downloads. It stores each user’s full name, date of birth, gender, GPS location, email address, and payment information. iFax: A mobile faxing app that stores all documents sent by its 500,000-plus users in an accessible cloud database—with the cloud storage keys embedded in the app. Logo Maker: A graphic design […]