(Article by Lucas Nolan republished from Breitbart.com)
ZDNet reports that a recent study by the International Computer Science Institute (ICSI) claims that as many as 1,325 Android apps installed across 500 million Android devices have found methods to bypass the Android operating systems permissions system to continue to track users without their knowledge or consent.
ICSI researchers investigated 88,000 Android apps to determine if app developers were using covert channels to gather information about users which could be given to advertisers. One form of tracking could include accessing the shared storage on an SD card to obtain the devices IMEI number, information that should not be accessible by the app if the user had not given it “READ_PHONE-STATE” permissions.
Researchers found one software development kit by a Chinese ad firm called Salmonads which would write a file containing a device’s IMEI number to shared storage, giving other apps access to it. Chinese search giant Baidu used a similar method with eight different apps being found submitting data back to Baidu servers.
Serge Egelman, one of the paper’s authors told CNET, “Fundamentally, consumers have very few tools and cues that they can use to reasonably control their privacy and make decisions about it. If app developers can just circumvent the system, then asking consumers for permission is relatively meaningless.”
Read more at: Breitbart.com