Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Mobile & Wireless

Hacked Versions of Popular Mobile Apps Widespread, Report Finds

A new report from Arxan Technologies says that there are hacked versions of almost all of the most popular applications available in Apple and Google’s mobile app stores being sold in third-party markets. 

A new report from Arxan Technologies says that there are hacked versions of almost all of the most popular applications available in Apple and Google’s mobile app stores being sold in third-party markets. 

The report, ‘State of Security in the App Economy: Mobile Apps Under Attack,’ states that tampered applications have proliferated extensively, with 92 percent of the Top 100 paid iOS applications and 100 percent of the Top 100 paid Google Android applications having been hacked. The situation opens users up to security risks and underscoring the importance of protecting the integrity of mobile applications against attacks.

“The research covers hacks, cracks, and breaches to applications that the application vendor / owner does not allow,” report author and Arxan vice president Jukka Alanen explained.

This includes disabled or circumvented security such as cracked encryption; unlocked or modified features; pirated copies, ad-removed versions and versions laced with malware.

“All of these attacks can cause significant damage to the application vendor / owner and the fact that over 90 percent of top mobile apps were found as hacked versions illustrates the ease of breaching applications and the widespread nature of the hacking problem,” he said. “As for malware, for instance, 86 percent of Android malware are repackaged versions of legitimate applications.”

The apps came from various industries including financial services, social networking apps and others. Free applications are not immune either – 40 percent of the 15 most popular free iOS apps and 80 percent of the top 15 free Android apps had hacked versions available as well.

“In general, given the widespread existence of hacked versions of mobile apps, it’s important for end-users to exercise due care and caution when downloading and installing applications – e.g., to know what they’re downloading, [and] from where,” Alanen said.

The report also suggested organizations focus app security initiatives on protecting mobile apps against tampering and reverse-engineering attacks, in addition to securing them against vulnerabilities.

“Build protections directly into the app — harden the code against reverse-engineering, and make the app tamper-proof and self-defending — to counter how hackers attack an app,” the report advised.

Written By

Click to comment

Expert Insights

Related Content

Mobile & Wireless

Apple rolled out iOS 16.3 and macOS Ventura 13.2 to cover serious security vulnerabilities.

Mobile & Wireless

Technical details published for an Arm Mali GPU flaw leading to arbitrary kernel code execution and root on Pixel 6.

Mobile & Wireless

Apple’s iOS 12.5.7 update patches CVE-2022-42856, an actively exploited vulnerability, in old iPhones and iPads.

Mobile & Wireless

Two vulnerabilities in Samsung’s Galaxy Store that could be exploited to install applications or execute JavaScript code by launching a web page.

Mobile & Wireless

South Dakota Gov. Kristi Noem says her personal cell phone was hacked and linked it to the release of documents by the January 6...

Cybercrime

A digital ad fraud scheme dubbed "VastFlux" spoofed over 1,700 apps and peaked at 12 billion ad requests per day before being shut down.

Mobile & Wireless

Infonetics Research has shared excerpts from its Mobile Device Security Client Software market size and forecasts report, which tracks enterprise and consumer security client...

Mobile & Wireless

Chinese tech giant Huawei patched nearly 300 vulnerabilities in its HarmonyOS operating system in 2022.