News
Putin Projects Defiance and Global Reach at Victory Day Parade Amid War Stalemate
Technology
The Algorithmic Tightrope: Big Tech, AI, and the High-Stakes Balancing Act
Media & Entertainment
Netflix Launches ChatGPT-Powered AI Search Tool
Virtual reality
Beyond Headsets: How Wearable Haptics Are Reshaping the Future of Work
Mobile
Google’s Massive Android Redesign Looks Great — But Who’s Going to See It?
News
Trump Threatens New Sanctions on Russia if It Rejects Extended Cease-Fire
Virtual reality
Developer Brings Continuous Scene Meshing to Quest 3 with Lasertag
News
How Will Pope Leo Approach the Rising Right Wing of the U.S. Church?
Technology
Mobile Apps: A Growing Target for Hackers Due to Private Data
Mobile
Google I/O 2025 Preview: What to Expect from Android 16, Android XR, Gemini, and More
Media & Entertainment
Freepik Launches AI Image Generator Trained on Licensed Data
Technology
The AI–5G Convergence: Shaping the Future of Telecom
Virtual reality
Meta’s VR Division Posts $4.2 Billion Loss as Ray-Ban Meta Glasses See Surge in Sales
News
With Tears of Joy and Anxiety, Waiting for P.O.W.s to Come Home, at Last
Technology
AMD’s Embedded Edge: Leadership, Differentiation, and AI Opportunity
Technology
Waymo Expands Arizona Operations to Scale Up Robotaxi Fleet
Mobile
Samsung’s Tri-Fold Phone May Feature Silicon-Carbon Battery, Share Design with Galaxy Z Fold 7
News
Can You Pass the Army’s New Fitness Test?
Technology
How Intel and Tech Allies Can Help Western Carmakers Keep Pace With China
News
Trump Backs Off Wealth Tax Push, Saying G.O.P. ‘Probably Shouldn’t’ Raise Rates
Media & Entertainment
Google Backs Film and TV Projects to Rebrand Big Tech’s Image
Mobile
Samsung Begins Rolling Out Android 15-Based One UI 7 to 2021 and 2022 Phones
Media & Entertainment
YouTube Support Disrupted by Widespread European Power Outages
Virtual reality
Valve Releases SteamVR 2.10 with Recenter Shortcut, Jitter Fixes, and Linux Improvements
Mobile
iOS 18.5 RC Is Here — Here’s What’s New for Your iPhone
Media & Entertainment
As Deezer Approaches Profitability, It Rolls Out Custom Algorithm and Personalization Features
News
What We Know About the Terrorist Groups Targeted by India
Technology
The Herculean Task of Reshoring Electronics Manufacturing to the US
Virtual reality
RayNeo Air 3S: Big-Screen XR Glasses at a Surprisingly Low Price
Technology
SMBs Face Costly, Complex Barriers to Cybersecurity
Virtual reality
AR Smart Glasses Just Got Their Killer App — and It Might Change How You Work Forever
Media & Entertainment
Patreon Tests Native Livestreaming With 24/7 Capability
News
‘Enough Is Enough’: Child Rape Case Sparks Outrage in South Africa
Virtual reality
Apple Vision Pro Delivers a Stunning Glimpse Into the Future of Immersive Entertainment
News
Indian Defense Firm Says It Did Not Resell U.K. Technology to Russia
Mobile
Android 16 Could Introduce Intrusion Detection for Enhanced Device Security
Mobile
Semtech Unveils Next-Gen LoRa® Technology at IoT Solutions World Congress 2025
Virtual reality
‘Galactic Traffic Control’ Adds Immersive VR Mode and Scaled-Down Mini Mode in Major Update
Mobile
How to Turn Your Existing Wallet into an RFID-Blocking Wallet (For Free)
Technology
A Decade-Long Quest to Build the Battery That Could End the Gasoline Era
News
Republican Agenda Faces Familiar Roadblock: The SALT Deduction
Technology
How Apple Created a Legal Quagmire by Skirting a Judge’s Ruling
Virtual reality
Backbone Pro Controller Now Available for Preorder Ahead of May 20 Launch
Mobile
PopSockets Aren’t Just for Phones — Here Are Other Ways They Come in Handy
Mobile
Sony Teases Xperia 1 VII’s Walkman-Inspired Audio Capabilities
Friday, May 23, 2025
News
Putin Projects Defiance and Global Reach at Victory Day Parade Amid War Stalemate
Technology
The Algorithmic Tightrope: Big Tech, AI, and the High-Stakes Balancing Act
Media & Entertainment
Netflix Launches ChatGPT-Powered AI Search Tool
Virtual reality
Beyond Headsets: How Wearable Haptics Are Reshaping the Future of Work
Mobile
Google’s Massive Android Redesign Looks Great — But Who’s Going to See It?
News
Trump Threatens New Sanctions on Russia if It Rejects Extended Cease-Fire
Virtual reality
Developer Brings Continuous Scene Meshing to Quest 3 with Lasertag
News
How Will Pope Leo Approach the Rising Right Wing of the U.S. Church?
Technology
Mobile Apps: A Growing Target for Hackers Due to Private Data
Mobile
Google I/O 2025 Preview: What to Expect from Android 16, Android XR, Gemini, and More
Media & Entertainment
Freepik Launches AI Image Generator Trained on Licensed Data
Technology
The AI–5G Convergence: Shaping the Future of Telecom
Virtual reality
Meta’s VR Division Posts $4.2 Billion Loss as Ray-Ban Meta Glasses See Surge in Sales
News
With Tears of Joy and Anxiety, Waiting for P.O.W.s to Come Home, at Last
Technology
AMD’s Embedded Edge: Leadership, Differentiation, and AI Opportunity
Technology
Waymo Expands Arizona Operations to Scale Up Robotaxi Fleet
Mobile
Samsung’s Tri-Fold Phone May Feature Silicon-Carbon Battery, Share Design with Galaxy Z Fold 7
News
Can You Pass the Army’s New Fitness Test?
Technology
How Intel and Tech Allies Can Help Western Carmakers Keep Pace With China
News
Trump Backs Off Wealth Tax Push, Saying G.O.P. ‘Probably Shouldn’t’ Raise Rates
Media & Entertainment
Google Backs Film and TV Projects to Rebrand Big Tech’s Image
Mobile
Samsung Begins Rolling Out Android 15-Based One UI 7 to 2021 and 2022 Phones
Media & Entertainment
YouTube Support Disrupted by Widespread European Power Outages
Virtual reality
Valve Releases SteamVR 2.10 with Recenter Shortcut, Jitter Fixes, and Linux Improvements
Mobile
iOS 18.5 RC Is Here — Here’s What’s New for Your iPhone
Media & Entertainment
As Deezer Approaches Profitability, It Rolls Out Custom Algorithm and Personalization Features
News
What We Know About the Terrorist Groups Targeted by India
Technology
The Herculean Task of Reshoring Electronics Manufacturing to the US
Virtual reality
RayNeo Air 3S: Big-Screen XR Glasses at a Surprisingly Low Price
Technology
SMBs Face Costly, Complex Barriers to Cybersecurity
Virtual reality
AR Smart Glasses Just Got Their Killer App — and It Might Change How You Work Forever
Media & Entertainment
Patreon Tests Native Livestreaming With 24/7 Capability
News
‘Enough Is Enough’: Child Rape Case Sparks Outrage in South Africa
Virtual reality
Apple Vision Pro Delivers a Stunning Glimpse Into the Future of Immersive Entertainment
News
Indian Defense Firm Says It Did Not Resell U.K. Technology to Russia
Mobile
Android 16 Could Introduce Intrusion Detection for Enhanced Device Security
Mobile
Semtech Unveils Next-Gen LoRa® Technology at IoT Solutions World Congress 2025
Virtual reality
‘Galactic Traffic Control’ Adds Immersive VR Mode and Scaled-Down Mini Mode in Major Update
Mobile
How to Turn Your Existing Wallet into an RFID-Blocking Wallet (For Free)
Technology
A Decade-Long Quest to Build the Battery That Could End the Gasoline Era
News
Republican Agenda Faces Familiar Roadblock: The SALT Deduction
Technology
How Apple Created a Legal Quagmire by Skirting a Judge’s Ruling
Virtual reality
Backbone Pro Controller Now Available for Preorder Ahead of May 20 Launch
Mobile
PopSockets Aren’t Just for Phones — Here Are Other Ways They Come in Handy
Mobile
Sony Teases Xperia 1 VII’s Walkman-Inspired Audio Capabilities

Mobile Apps: A Growing Target for Hackers Due to Private Data

April 25, 2025
|
No Comments
|
Technology

Mobile applications are becoming prime targets for cybercriminals, and the reason is clear: they store vast amounts of personal data. In fact, approximately 82.78% of mobile apps on iOS — or about 1.55 million apps — track private user information, according to Exploding Topics.

Mobile apps are particularly vulnerable to cyberattacks due to various hidden points of entry and exit, such as API calls, background syncing, and push notifications. These weak spots can be exploited before traditional security measures even detect the breach.

Satish Swargam, principal security consultant at Black Duck Software, explains that users often grant broad app permissions without fully understanding the risks. “Most users don’t carefully manage permissions, allowing malicious apps to take advantage of these invisible access points,” he told TechNewsWorld.

Furthermore, legacy security tools often fail to identify suspicious activity until it’s too late. AI-driven fraud can bypass multi-factor authentication, exploit memory bugs, and hijack transactions in real-time.

“AI has fundamentally changed the landscape of mobile security,” said Tom Tovar, CEO of Appdome, a mobile security and integration platform. “It has lowered the barrier for creating and amplifying attacks, making it easier for malicious actors to target consumers.”

AI: A Game Changer for Cyberattacks

AI-powered attacks are making it faster and easier for hackers to compromise mobile systems. Chris Hills, chief security strategist at BeyondTrust, said, “AI trained for malicious purposes can quickly discover and exploit vulnerabilities in a way a human hacker never could.”

For defenders, the rise of AI presents a challenge. “If you’re in the defense business, it’s an exciting time. But for the average consumer, it’s a scary one,” Tovar added.

Mobile App Design: A Security Afterthought

Mobile apps are particularly vulnerable due to the vast amount of personal information they collect. T. Frank Downs, senior director at BlueVoyant, points out that apps have access to everything from location data to financial details, making them a goldmine for cybercriminals.

Chris Wingfield, senior VP at 360 Privacy, also emphasizes that mobile apps are not designed with security in mind. “Apps continuously emit soft identifiers, such as install IDs and analytics payloads, that expose location data and device fingerprints,” he explained. “Attackers don’t need root access; they just need this ‘data exhaust’ to gather sensitive information.”

Tovar further criticized the current security model, noting that it’s more focused on regulatory compliance than fraud prevention. “Mobile apps are a goldmine for attackers because they’re designed to be convenient, not secure,” he said.

Security Gaps in Mobile App Activity

One major issue is that many organizations focus heavily on backend security, leaving endpoints exposed. Kern Smith, VP of global solutions engineering at Zimperium, explains, “Many security schemes concentrate on backend analytics or user behavior, missing threats that happen directly within the app or on the device.”

This leaves gaps that can be exploited for malware attacks, runtime manipulation, and credential theft. Downs agrees that while backend protections are important, they often fail to secure the app itself, leaving vulnerabilities in app logic, data storage, and communication channels.

Wingfield adds, “Most protection schemes still assume that threats are credential-based. But modern attacks often target metadata, like device geolocation and app IDs, which is harvested and exposed immediately—without encryption or auditing.”

Why Server-Side Security Still Dominates

Despite the increasing focus on app security, experts agree that server-side protections remain critical. Jeff Williams, CTO of Contrast Security, points out, “The server side holds data for all users, while the mobile app only holds data for one. This makes the server a much more attractive target for hackers.”

However, there’s a shift toward integrating in-app protection with traditional backend security measures. Eric Schwake, director of cybersecurity strategy at Salt Security, notes that protecting the app itself is essential as cyberattacks increasingly target vulnerabilities directly within the app.

“In-app protection strengthens security by defending against tampering, reverse engineering, and runtime attacks,” Schwake explained. “As the threat landscape evolves, this added layer of security is crucial.”

The Road Ahead

As mobile apps continue to collect more personal data and AI-driven attacks grow more sophisticated, the need for robust, end-to-end mobile security solutions has never been greater. The race is on for app developers to integrate stronger security measures both within the app and on the server side to prevent cybercriminals from exploiting these vulnerable surfaces.