NOWSECURE UNVEILS FIRST AUTOMATED OWASP MASVS V2.1 MOBILE APP SECURITY AND NEW PRIVACY TESTING

NowSecure MARI is the industry’s first simple risk score based on millions of assessments that identifies third-party apps vulnerable to PII and IP exfiltration, supply-chain and MiTM attacks and sensitive data theft.

MARI Datasheet featured image 768X480
NowSecure Launches Mobile App Risk Intelligence Solution to Combat Threats to Customer and Employee Security, Safety and Privacy NowSecure Launches Mobile App Risk Intelligence Solution to Combat Threats to Customer and Employee Security, Safety and Privacy Show More
magnifying glass icon

2016 NowSecure Mobile Security Report Now Available

Posted by
2016 NowSecure Mobile Security Report Cover

Over the past few months, the NowSecure team plunged into the depths of our mobile security intelligence to gather and correlate data in order to present a snapshot of the current state of mobile security ““ the 2016 NowSecure Mobile Security Report. Some of the more interesting statistics we uncovered include:

  • 25 percent of Android apps tested include at least one high risk security flaw
  • Android apps in the Business category are three times more likely to leak login credentials than the average app
  • Android apps in the Game category are one-and-a-half times more likely than the average app to include a high risk vulnerability
  • 35 percent of communications sent by mobile devices are unencrypted
  • The average mobile device connects to 160 unique servers each day

25 percent of Android apps tested have at least one high risk security issue The report’s sources include our NowSecure Intelligence engine that collects more than 140 million mobile security data points per day and the analysis of more than 400,000 mobile apps from the Google Play app store. We tested these apps using our dynamic analysis system that automates and scales the analysis of mobile apps using real devices to test for high risk security problems.

What are high risk mobile app security flaws?

We define high risk security flaws as issues that expose data that a malicious individual could use to gather private, sensitive information and/or monitor a user’s activity. The report categorizes high risk issues as follows:

  • Sensitive Data Issues: Leaking personal user data over the network
  • Network Issues: Sending communications over the network without proper encryption
  • File System Issues: Exposing data through improper file permissions

The chart below illustrates the percentage of Android apps overall that include these security issues. Percentage of Android apps with security issues by issue type Out of all the mobile apps we tested, 13.3 percent had file system issues. The prevalence of sensitive data leak and network issues in all mobile apps was 10.7 percent and 3.8 percent respectively. To read more about the mobile security trends we’ve identified and findings across five popular app categories, including Business, Finance, Games, Shopping, and Social, download the report now.

Related Content: