{"id":328053,"date":"2019-11-18T09:31:28","date_gmt":"2019-11-18T07:31:28","guid":{"rendered":"https:\/\/mybroadband.co.za\/news\/?p=328053"},"modified":"2019-11-18T09:32:23","modified_gmt":"2019-11-18T07:32:23","slug":"pre-installed-android-apps-pose-a-big-security-threat-study","status":"publish","type":"post","link":"https:\/\/mybroadband.co.za\/news\/security\/328053-pre-installed-android-apps-pose-a-big-security-threat-study.html","title":{"rendered":"Pre-installed Android apps pose a big security threat &#8211; Study"},"content":{"rendered":"<p>Security firm <a href=\"https:\/\/www.kryptowire.com\/android-firmware-2019\/\" target=\"_blank\" rel=\"noopener noreferrer\"><strong>Kryptowire<\/strong><\/a> claims that it has uncovered 146 vulnerabilities in pre-installed Android apps across 29 different vendors.<\/p>\n<p>&#8220;To quantify the exposure of the Android end-users to vulnerabilities residing within pre-installed apps and firmware, we analyzed a wide range of Android vendors and carriers using devices spanning from low-end to flagship,&#8221; said Kryptowire.<\/p>\n<p>&#8220;Utilizing Kryptowire\u2019s automated firmware scanning tools we are able to provide up to date detection of these vulnerabilities as new firmware and devices are introduced into your organization.\u00a0&#8221;<\/p>\n<p>The vulnerabilities found by Kryptowire vary from apps that can be used to install other malicious software, to those which can modify system properties.<\/p>\n<p>Samsung was the worst affected, according to Kryptowire&#8217;s findings, with 33 issues found pertaining to its devices. According to the report, other vendors that had many issues include ASUS and Xiaomi.<\/p>\n<h3 class=\"my-4\">Google&#8217;s preventative measures<\/h3>\n<p>Google launched the <a href=\"https:\/\/source.android.com\/security\/reports\/Google_Android_Security_2018_Report_Final.pdf\" target=\"_blank\" rel=\"noopener noreferrer\"><strong>Build Test Suite<\/strong><\/a> (BTS) in 2018, which scans all devices&#8217; firmware for known security issues that may be hiding within pre-installed apps.<\/p>\n<p>&#8220;Anytime BTS detects an issue we work with our OEM partners to remediate and understand how the application was included in the build,&#8221; said Google.<\/p>\n<p>&#8220;This teamwork has allowed us to identify and mitigate systemic threats to the ecosystem.&#8221;<\/p>\n<p>When asked by <strong><a href=\"https:\/\/techcrunch.com\/2019\/11\/15\/those-crappy-pre-installed-android-apps-can-be-full-of-security-holes\/\" target=\"_blank\" rel=\"noopener noreferrer\">TechCrunch<\/a><\/strong> for comment on the Kryptowire report, Google said that it appreciates assistance from researchers.<\/p>\n<p>&#8220;We appreciate the work of the research community who collaborate with us to responsibly fix and disclose issues such as these.&#8221;<\/p>\n<h3 class=\"my-4\">Now read: <a href=\"https:\/\/mybroadband.co.za\/news\/hardware\/328047-intel-unveils-new-high-performance-graphics-card.html\" rel=\"bookmark\">Intel unveils new high-performance graphics card<\/a><\/h3>\n","protected":false},"excerpt":{"rendered":"<p>Security firm Kryptowire claims that it has uncovered 146 vulnerabilities in pre-installed Android apps across 29 different vendors.<\/p>\n","protected":false},"author":341039,"featured_media":268787,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[27],"tags":[397,61881,167,61879],"class_list":["post-328053","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security","tag-android","tag-build-test-suite","tag-google","tag-pre-installed-apps"],"_links":{"self":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/328053"}],"collection":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/users\/341039"}],"replies":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/comments?post=328053"}],"version-history":[{"count":1,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/328053\/revisions"}],"predecessor-version":[{"id":328061,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/328053\/revisions\/328061"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/media\/268787"}],"wp:attachment":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/media?parent=328053"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/categories?post=328053"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/tags?post=328053"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}