1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Many top Android sports and betting apps have some serious securi

    From TechnologyDaily@1337:1/100 to All on Wed Feb 8 16:15:04 2023
    Many top Android sports and betting apps have some serious security flaws

    Date:
    Wed, 08 Feb 2023 15:58:26 +0000

    Description:
    Developers of Android apps aren't handling security very well, researchers claim, as the number of threats grows.

    FULL STORY ======================================================================

    Ten of the most popular Android sports betting apps are potentially putting their users at risk from a range of cybersecurity dangers, a new report has claimed.

    Analyzing the top 10 apps, which cumulatively have more than 21 million downloads, researchers from Synopsys found that the apps have, on average,
    125 components, 10 of which are usually vulnerable. On average, each app has 179 vulnerabilities.

    These vulnerabilities tie back to the use of open-source dependencies, the researchers further claim. While all of the apps are being actively worked
    on, some use open-source components as old as 12 years. In the software
    world, two or three years is a long time, the researchers added. Increasing risks

    While known vulnerabilities in open-source components arent necessarily exposed in the app, the researchers further said, the older the component - the higher the risk. Whats more, using outdated components means the devs arent managing their dependencies properly, meaning they are not handling security well in general. Read more

    Open source security is rapidly becoming a major concern



    Open source software vulnerabilities see huge rise



    These are the best firewalls around

    To make matters even worse, things seem to be going downhill for sports and betting apps. In last years analysis, which included 3,335 apps, 63% have had vulnerable components, down from todays 100%, while the average number of vulnerabilities per app sat at 39 (down from 179 today).

    All this being said, the researchers still did not want to unequivocally
    state that the apps are not safe to use. Thats like asking a team of mechanical engineers to review an airplanes landing gear system and avow that it is safe to be a passenger in that airplane, they say.

    Software composition analysis (SCA), as was done here, is just one important part of a secure software development life cycle. By using a process that includes security at every step, developers can create software that is resilient, secure, and minimizes risk for both their own organization and their customers, the researchers concluded. Keep yourself safe from hackers and scammers with the best ID theft protection out there



    ======================================================================
    Link to news story: https://www.techradar.com/news/many-top-android-sports-and-betting-apps-have-s ome-serious-security-flaws


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)