According to a survey by researchers at the International Institute of Computer Science, more than 1,300 applications made for Android continue to access user data even after access is denied.
In total, 88,000 Play Store apps were listed, with 1,325 identified while still accessing data. They carry codes that can bypass Android rules that have been manually adjusted by the user – those that appear whenever an app is opened for the first time, requesting access to some hardware resource.
Shutterfly, an app for photo editing, is one of the examples of an application that continues to collect data about the location of the photos and send them to its own servers, even after the user denies this access. The company denies access.
Another much more famous name is Baidu, which is capable of reading unprotected files that are generated by other apps. The maneuver allows apps that have been denied access to any sensor to read files generated by other apps, which have free access – trickster!
The publication states that apps continue to consult location and identification information on the smartphone, even after this user has revoked this access. “Fundamentally, consumers have few tools and tips they can use to reasonably control their privacy and make decisions about it,” says Serge Egelman, director of security and privacy at the institute.
“If developers can simply bypass the system, then asking the consumer for permission is relatively meaningless,” adds the executive. Egelman says that some researchers alerted Google about the problem in September last year, but the solution should come only on the next Android.
Privacy has been targeted both by Google, which runs Android, and by Apple and its iOS. In the recent releases of operating systems of the apple brand this theme has gained increasing prominence, while Google has promised changes to Android Q, which has not yet been officially launched for users.
With information: CNET.