Skip to main content

Spy-alert! Your Android phone may be listening to you, & secretly taking screenshots of activities


Spy-alert! Your Android phone may be listening to you, & secretly taking screenshots of activities


phone-privacy-tech-ThinkstockPhotos-658191736
Some popular apps on your Android phone may be actively listening to you, monitoring your habits and even secretly taking screenshots of your activity and sending them to third parties, a new study has found. 


These screenshots and videos of your activity on the screen could include usernames, passwords, credit card numbers, and other important personal information, the researchers said. 



"We found that every app has the ability to record your screen and anything you type," said David Choffnes, a Professor at Boston's Northeastern University.The findings will be presented at the Privacy Enhancing Technology Symposium Conference in Barcelona. 



For the study, the team analysed more than 17,000 of the most popular apps on the Android operating system, using an automated test programme written by the students. 


In all 9,000 of the 17,000 apps showed the potential to take screenshots.
"There were no audio leaks at all. Not a single app activated the microphone," said Christo 
Wilson, Professor at the varsity. 

"Then we started seeing things we didn't expect. Apps were automatically taking 
screenshots of themselves and sending them to third parties." 

Although these privacy breaches appeared to be benign, they emphasized how easily a 
phone's privacy window could be exploited for profit. 

"This opening will almost certainly be used for malicious purposes. It's simple to install and 
collect this information. And what's most disturbing is that this occurs with no notification to
 or permission by users," Wilson noted. 

Although the study was conducted on Android phones, there is no reason to believe that 
other phone operating systems would be less vulnerable, the researchers said. 




Comments

Post a Comment

Popular posts from this blog

Momo suicide game

Microsoft clamps down on sick 'Momo suicide game' in 'Minecraft' Microsoft is clamping down on the sick “Momo suicide challenge,” which recently infiltrated the wildly popular online game “Minecraft.”The tech giant owns “Minecraft” developer Mojang. The vile “Momo suicide game” has been garnering attention after spreading on WhatsApp, prompting police warnings. "Momo" is a viral challenge that asks people to add a contact via WhatsApp - they are then   urged   to commit self-harm or suicide. The "game" has fueled comparisons to the sinister " Blue Whale challenge " that led to reports of suicides in Russia and the U.S, as well as the online fictional character of "Slender Man." In 2014 two 12-year-old girls in Wisconsin  attempted to kill   a classmate in an attempt to please the horror character. The Buenos Aires Times recently  reported  that police in Argentina are investigating whether “Momo” is linked to the suicide of a 12-y...
Post a Comment
Read more

Spring Security with JWT for REST API

Spring is considered a trusted framework in the Java ecosystem and is widely used. It’s no longer valid to refer to Spring as a framework, as it’s more of an umbrella term that covers various frameworks. One of these frameworks is Spring Security , which is a powerful and customizable authentication and authorization framework. It is considered the de facto standard for securing Spring-based applications. Despite its popularity, I must admit that when it comes to single-page applications , it’s not simple and straightforward to configure. I suspect the reason is that it started more as an MVC application -oriented framework, where webpage rendering happens on the server-side and communication is session-based. If the back end is based on Java and Spring, it makes sense to use Spring Security for authentication/authorization and configure it for stateless communication. While there are a lot of articles explaining how this is done, for me, it was still frustrating to set it up for the f...
Post a Comment
Read more

The Java 8 Stream API

1 Overview In this comprehensive tutorial, we'll go through the practical uses of Java 8 Streams from creation to parallel execution. To understand this material, readers need to have a basic knowledge of Java 8 (lambda expressions,   Optional,  method references) and of the Stream API. 2 Stream Creation There are many ways to create a stream instance of different sources. Once created, the instance  will not modify its source,  therefore allowing the creation of multiple instances from a single source. Empty Stream We should use the  empty()  method in case of the creation of an empty stream: Stream<String> streamEmpty = Stream.empty(); We often use the  empty()  method upon creation to avoid returning  null  for streams with no element: public Stream<String> streamOf (List<String> list) { return list == null || list.isEmpty() ? Stream.empty() : list.stream(); } 2.2. Stream of  Collection We can also creat...
Post a Comment
Read more