After Skype; Linkedin, Foursquare and Netflix Join the Android Personal Data Leak Club

Remember how Android vulnerabilities were making news every morning a few months ago? Remember how Skype stored personal data in a plaintext format and it was all left out there in your phone’s SD card storage to be accessed by anyone? Well, the vulnerability is revisited. Just that it is not Skype this time. There are a number of apps that do the same mistakes and Netflix, Foursquare and Linkedin just joined the hall of shame.
android
Clearly, these mobile apps are not interested in the security and privacy of their users. This is like your OS storing login password in a text file. How would that feel? The vulnerability has been discovered by  viaForensics but it seems like this is becoming a trend with Android apps. There must be many more apps that do the same. It is only time before they are discovered.

The best thing about these things is that the moment they break out, fixes are released and things are better. However, if undiscovered, they just lay there.

Now, data theft is still better than password theft and the very nature of using the same login details everywhere is a huge risk for Android users of any of these services.

If you are a service oriented business, people understand that data is important for you to function properly. Their only privacy concerns is what exactly you are doing with this data and mishaps like these simply validate the paranoid people have with privacy. Companies have to start taking user data seriously and handle it with utmost care.

Published by

Chinmoy Kanjilal

Chinmoy Kanjilal is a FOSS enthusiast and evangelist. He is passionate about Android. Security exploits turn him on and he loves to tinker with computer networks. He rants occasionally at Techarraz.com. You can connect with him on Twitter @ckandroid.