Google pulled dozens of apps from its Google Play store after determining they include software that harvests data without the device-owners’ permission.
The code, written by a Panamanian company, Measurement Systems S. de R.L., ran on millions of Android devices and has been found inside several Muslim prayer apps downloaded more than 10 million times, according to a report published by AppCensus.
Measurement Systems is linked through corporate records and web registrations to a Virginia defense contractor deep in cyber intelligence and network defense, all working for U.S. national-security agencies, according to The Wall Street Journal, which initially published the report.
The code was also found in a highway-speed-trap detection app, a QR-code reading app and a number of other popular consumer apps, the WSJ reported, citing two researchers who discovered it while auditing and searching for vulnerabilities in Android apps.
Serge Egelman, a researcher at the International Computer Science Institute and the University of California, Berkeley, and Joel Reardon of the University of Calgary, cofounded AppCensus. They told the WSJ that developers said Measurement Systems paid them to incorporate its software development kit (SDK) into their apps.
Data collected through the SDK includes clipboard snippets, GPS locations, email addresses, and phone numbers. In a post, Reardon explains that different apps running the same version of the SDK will collect different information.
...
Read Full Story: https://www.mediapost.com/publications/article/372753/google-bans-apps-with-hidden-data-harvesting-softw.html
Your content is great. However, if any of the content contained herein violates any rights of yours, including those of copyright, please contact us immediately by e-mail at media[@]kissrpr.com.