Wednesday, May 22, 2024

Hidden Malware and Privacy Risks with the Top Free Android VPN apps in the Google Play Store

Many of the VPN apps in the google play store failed to protect the user privacy, potentially malicious and spy on users secure transactions.

According to Simon Migliano Head of Research, over 25% of apps failed to protect the user privacy and 85% apps contains suspicious permissoopns that spy on users.

Top10VPN’s extensive research published rist index findings to avoid customers using flawed apps that compromise the user privacy and security.

Risk Index tested over 150 Free Android VPN apps that has more than 260M installs for effective encryption, browser leaks, viruses and malware, dangerous app functions, behaviors and suspicious permissions.

66% of apps asking users to grant intrusive permissions, 25% ask users to give tracking permissions and 38% of apps asking permission to access personal info.

The permissions includes accessing user’s camera, recoding through Microphone without user consent, accessing contacts and sending SMS secretly.

According to the team analysis report, 63% of all apps abuses users privacy, 18% of apps reported positives of malware scan and 38% apps has major abnormality.The detailed report states that all the VPN indexed by Risk Index were encryption the traffic.

A number of intrusive permissions were detected in 150 apps that indexed the write external storage, Bluetooth, read contacts, camera, send sms, record audio, read calendar anad activity recognization.

Free Android VPN apps

VPN is basically a private network through which you can connect to the Internet. It makes your web traffic pass through encrypted connections to servers which are under the control of providers.

One of the most important reasons to install your own VPN is to be sure that your provider is not selling your browsing history to others. This is permissible under law and you cannot be sure of the integrity of all providers.

Alex Brammer told Gbhackers that, we identified the top 150 free VPN apps on the Google Play store and downloaded the binaries for analysis. The binaries were scanned using the VirusTotal tool, the resulting reports for each app identified the following: matches against major databases for known malware and viruses; app permissions; and dangerous functions and behavior.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity updates also you can take the Best Cybersecurity courses online to keep your self-updated.


Latest articles

Hackers Claiming Access to Qatar National Bank Database

A group of hackers has claimed to have accessed the database of Qatar National...

Cloud-Based Malware Attack Abusing Google Drive & Dropbox

A phishing email with a malicious zip attachment initiates the attack. The zip contains...

OmniVision Technologies Cyber Attack, Hackers Stolen Personal Data in Ransomware Attack

OmniVision Technologies, Inc. (OVT) recently disclosed a significant security breach that compromised its clients'...

Critical Flaw In Confluence Server Let Attackers Execute Arbitrary Code

The widely used team workspace corporate wiki Confluence has been discovered to have a...

Threat Actors Leverage Bitbucket Artifacts to Breach AWS Accounts

In a recent investigation into Amazon Web Services (AWS) security breaches, Mandiant uncovered a...

Hackers Breached Western Sydney University Microsoft 365 & Sharepoint Environments

Western Sydney University has informed approximately 7,500 individuals today of an unauthorized access incident...

Memcyco Report Reveals Only 6% Of Brands Can Protect Their Customers From Digital Impersonation Fraud

Memcyco Inc., provider of digital trust technology designed to protect companies and their customers...
Guru baran
Guru baran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Free Webinar

Live API Attack Simulation

94% of organizations experience security problems in production APIs, and one in five suffers a data breach. As a result, cyber-attacks on APIs increased from 35% in 2022 to 46% in 2023, and this trend continues to rise.
Key takeaways include:

  • An exploit of OWASP API Top 10 vulnerability
  • A brute force ATO (Account Takeover) attack on API
  • A DDoS attack on an API
  • Positive security model automation to prevent API attacks

Related Articles