We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message
80,259 News Articles

Ads in mobile apps aren't just annoying -- they're risky, too

Many mobile apps include ads that can threaten users' privacy and network security, according to North Carolina State University researchers.

The National Science Foundation-funded researchers studied 100,000 apps in Google Play (formerly Android Market) and found that more than half contained ad libraries, nearly 300 of which were enabled to grab code from remote servers that could give malware and hackers a way into your smartphone or tablet.

REVIEW: Android Wi-Fi Stumblers

THREATS: Unique malware samples broke 75 million mark in 2011

"Running code downloaded from the Internet is problematic because the code could be anything," says Xuxian Jiang, an assistant professor of computer science at NC State and co-author of a paper titled "Unsafe Exposure Analysis of Mobile In-App Advertisements." "For example, it could potentially launch a 'root exploit' attack to take control of your phone -- as demonstrated in a recently discovered piece of Android malware called RootSmart."

Apps that feature ad libraries are attractive in that they enable developers to provide apps for free, but the ad delivery process can open up users to privacy and security risks, according to Jiang, whose mobile- and Android-focused research we've covered in the past (See "Researchers use Woodpecker to single out vulnerable Android phones"). One problem with ad libraries, which are served up via Google, Apple or other such companies, is that app users essentially give them the same access permissions as the apps themselves, allowing them to skirt standard security processes.

It turns out that about half the ad libraries could track a user's location via GPS, and 1 in 23.4 apps used ad libraries that let advertisers themselves access a user's location via GPS.

Jiang says that even though it is convenient to house the ad libraries in mobile apps, a way to isolate the libraries needs to be created in order to improve security and privacy.

Bob Brown tracks network research in his Alpha Doggs blog and Facebook page, as well on Twitter and Google +.

Read more about wide area network in Network World's Wide Area Network section.


IDG UK Sites

Microsoft Band UK release date and price rumours, features and specs: Microsoft smartwatch unveiled

IDG UK Sites

Why Sony's PS4 2.0 update is every gamer's dream (well, mine at least)

IDG UK Sites

This Grolsch ad combines stop-motion & CG for majestic results

IDG UK Sites

Apple rumours and predictions for 2015: What to expect from Apple in 2015