More than 1,000 apps are gathering personal data from our smartphones despite not having permission, a study has revealed.
Up to 1,325 Android apps available on the Google Play store could be secretly tracking people, researchers at the International Computer Science Institute in California discovered.
The apps use hidden work-arounds to bypass permission systems within the Android operating system.
“Our work shows a number of side and covert channels that are being used by apps to circumvent the Android permissions system,” the study stated.
“The number of potential users impacted by these findings is in the hundreds of millions.”
The researchers said they notified Google about the issue last year, but a fix will not be issued until the release of the Android Q operating system, due in August. The Independent has contacted Google for further comment.
The study, which was presented at the US Federal Trade Commission’s PrivacyCon, looked at around 88,000 apps. The researchers say a full list of the 1,325 apps that compromised user privacy will be released in August.
“Fundamentally, consumers have very few tools and cues that they can use to reasonably control their privacy and make decisions about it,” Serge Egelman, director of privacy research at the ICSI, said at the conference, according to the website Cnet.
“If app developers can just circumvent the system, then asking consumers for permission is relatively meaningless.”
One example given in the study was the photo-editing app Shutterfly, which allegedly gathers GPS coordinates from a person’s phone, regardless of whether the user agrees to share their location data.
Shutterfly claimed it only gathered data with the permission of its users.
Join our commenting forum
Join thought-provoking conversations, follow other Independent readers and see their replies