Poor data management put 100 million Android users at risk

The personal data of over 100 million Android users may have been exposed due to poor data management practices. (Image via Android with edits)

Check Point Software Technologies, a security research firm, reports that 23 apps on the Google Play Store may have exposed the personal data of over 100 million users. The data leaks are the result of poor practices with regard to data management and syncing with cloud databases.

Sam Medley, Published 05/25/2021 🇫🇷 🇪🇸 ...

Over 100 million Android users had their data exposed due to faulty database configurations in multiple popular apps on the Google Play Store.

According to security research company Check Point Software, 23 apps mishandled user data through poor implementation of real-time data syncing.

Affected apps include lifestyle software including Astro Guru, iFax, Screen Recorder, and others. Some of these apps have over 10 million downloads.

Check Point states the main problem is a poor implementation of data storage, primarily with cloud-oriented databases and data syncs. Check Point also claims that these oversights may have leaked personal user data, including phone numbers, browser history, locations, and more.

Check Point researchers were able to exploit some apps to capture user information themselves with relative ease, pointing to major weak points that malicious parties could take advantage of. Some of these weak points could even allow bad actors to send phishing messages while posing as the app developer.

What do you think about the poor data management practices exposed by Check Point? Let us know in the comments.

Source(s)

Check Point Software Technologies, LTD

T-Mobile has experienced a data breach and customers may be affected by SIM swapping and their network information may have been leaked. (Image: Mika Baumeister)

T-Mobile hit with a data breach 12/29/2021

Cloudflare successfully detected and deterred a 2 Tbps multi-vector DDoS attack. (Image: Cloudflare)

Cloudflare fends off a multi-vector DDoS attack 11/17/2021

Cyberthreats. (Image source: Michael Geiger)

Google alerts 14,000 users to targeted phishing emails by Russian threat group 10/10/2021

Audacity's place in schools may be challenged by this new privacy policy. (Source: Audacity)

Audacity facing scrutiny after new privacy policy allows data collection, makes app 13+ 07/06/2021

This toggle in Android is set to get more powerful soon. (Source: Google)

Google announces its answer to App Tracking Transparency on iOS 06/05/2021

The United Kingdom tracked the location of millions of citizens without their knowledge. (Image: stock photo with edits)

The British government tracked the location of millions of UK citizens without their knowledge or consent 05/24/2021

The 3K display option is based on LTPS LCD technology that is usually seen on smartphones. (Image Source: Tuxedo)

Tuxedo Infinity Book Pro 14 Linux laptop launched with 3K LTPS LCD display option and Tiger Lake-U CPUs 05/21/2021

Apple software chief Craig Federighi confirmed Mac software vulnerability mid-May 2021 (Source: Wccftech)

It's official: The Mac has a security problem 05/20/2021

The new C8C security camera. (Source: EZVIZ)

EZVIZ launches its first pan/tilt outdoor Wi-Fi home security camera 05/19/2021

The Apple AirTag has been jailbroken. That didn't take long. (Image via Apple w/ edits)

Security researcher successfully hacks and jailbreaks an Apple AirTag 05/12/2021

Check Point reports a new MSM flaw. (Source: Wikichip)

Security researchers claim to find a severe vulnerability that may affect up to 30% of all Android phones worldwide 05/09/2021

Dell's firmware update driver has harbored severe security bugs for over a decade, according to researchers 05/07/2021

Multiple educational apps send students' data to third parties, often without their knowledge. (Photo by Kelly Sikkema on Unsplash)

New study finds 60% of apps used by U.S. schools share student data with third parties, sometimes without the users' knowledge 05/05/2021

The Mobvoi TicWatch Pro 3 gets a new system update

Latest Mobvoi TicWatch Pro 3 software update adds a host of QoL improvements 04/20/2021

Half a billion LinkedIn accounts have been allegedly scraped. (Source: LinkedIn)

The contents of 500 million LinkedIn accounts is reportedly up for sale 04/10/2021

Atari may slowly pivot from gaming to blockchain. (Image via Atari)

Atari leans further into crypto with creation of Atari Blockchain division, splits gaming business into separate division 04/07/2021

A huge number of Facebook accounts might be in danger after data from a 2019 leak surfaces online

Failbook: Personal data of roughly 530 million accounts from 106 countries leaks online 04/05/2021

Loading Comments

Comment on this article

Prosser 'confirms' new MacBook Pro ...

The new iMac is more metal plate th...

Sam Medley - Senior Tech Writer - 1345 articles published on Notebookcheck since 2016

I've been a computer geek my entire life. After graduating college with a degree in Mathematics, I worked in finance and banking a few years before taking a job as a database administrator. I started working with Notebookcheck in October of 2016 and have enjoyed writing news and reviews. I've also written for other outlets including UltrabookReview and GeeksWorldWide, focusing on consumer guidance and video gaming. My areas of interest include the business side of technology, retro gaming, Linux, and innovative gadgets. When I'm not writing on electronics or tinkering with a device, I'm either outside with my family, enjoying a decade-old video game, or playing drums or piano.

Please share our article, every link counts!

> Expert Reviews and News on Laptops, Smartphones and Tech Innovations > News > News Archive > Newsarchive 2021 05 > Poor data management put 100 million Android users at risk

Sam Medley, 2021-05-25 (Update: 2021-05-25)

Poor data management put 100 million Android users at risk

Source(s)

Related Articles