Android app permissions silently duplicated to advertisers

Powered by SC Magazine
 

Android applications are sharing users' personal data without their knowledge.

Top 50 Android applications are sharing users' personal data to advertisers without their knowledge.

According to research by British outlet Channel 4 News, when users grant permissions to applications, they unwittingly granted the same rights to advertisers.

That meant application permissions to access phone contacts would be extended to advertisers.

The model, discovered by MWR Security, breached privacy laws according to the European Commission.

“If users knew about this, I think they would be concerned about it. But at the moment I don't think they are aware of the situation and how widely their information can be used," researcher Nils said, adding that "a lot" of apps in the top 50 were affected.

MWR Security revealed that a one-off app it built sent text messages from the user's phone, their call log and contacts' details to an advertising company called MobClix, which has not responded to comment requests.

Nils told SC Magazine the advertising space was sold by the application developer via MobClix; the permissions allow the third party to access data or add names to the user's contact list or events to their calendar.

“With the Android permission model, the user can decide what the app can access and what it cannot, but most people will not make decisions based on that. They give permission to the third party and hand their trust to the app developer.”

Viviane Reding, vice-president of the European Commission who recently announced sweeping changes to the European Data Protection Directive, told Channel 4 News the model broke laws "because nobody has the right to get your personal data without you agreeing to this".

“Maybe you want somebody to get this data and agree and it's fine. You're an adult and you can do whatever you want. But normally you have no idea what others are doing with your data,” she said.

“They are spotting you, they are following you, they are getting information about your friends, about your whereabouts, about your preferences. That is certainly not what you thought you bought into when you downloaded a free-of-charge app. That's exactly what we have to change.”

This article originally appeared at scmagazineuk.com

Copyright © SC Magazine, UK edition


Android app permissions silently duplicated to advertisers
 
 
 
Top Stories
Innovating in the sleepy super industry
There’s little incentive to be on the bleeding edge, so why is Andrew Todd fighting so hard?
 
How technology will unify Toll
The systems headache formed through 15 years of acquisitions.
 
Immigration breached Privacy Act with data leak
Pilgrim slams "copy and paste" of asylum seeker data.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest articles on BIT Latest Articles from BIT
More 4G from Optus in Darwin
Nov 21, 2014
Click to see where Optus has expanded coverage to the suburbs near Darwin.
Optus steps up regional 4G coverage
Nov 20, 2014
Once 700Mhz services are working, Optus claims regional users will have a "faster and more ...
This Huawei 4G phone costs $99
Nov 12, 2014
The $99 Huawei Ascend Y550, available through Vodafone, enters the budget market as one of the ...
4G smartphones: Microsoft's Lumia 830
Nov 7, 2014
Microsoft has announced its flagship Windows Phone, the Nokia Lumia 830 4G, will be available in ...
Do you direct debit customers? Read this
Oct 10, 2014
Authorities have been targeting direct debit practices with iiNet and Dodo receiving formal ...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  38%
 
Your insurance company
  3%
 
A technology company (Google, Facebook et al)
  7%
 
Your telco, ISP or utility
  8%
 
A retailer (Coles, Woolworths et al)
  2%
 
A Federal Government agency (ATO, Centrelink etc)
  20%
 
An Australian law enforcement agency (AFP, ASIO et al)
  15%
 
A State Government agency (Health dept, etc)
  5%
TOTAL VOTES: 842

Vote