You are here: Blog Tags Covid-19

Voyage Tech Blogs

Voyage Technology has been serving the Beaver Dam area since 1999, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
Font size: +
Print

Basic Errors Have Made Hundreds of Applications a Risk to Data

Voyage Technology Blog Security
0 Comments
Basic Errors Have Made Hundreds of Applications a Risk to Data

Earlier this year, it became known that almost 2,000 mobile applications suffered from some type of security threat, thus putting a lot of sensitive data on the line. Let’s examine how you can ensure that your business doesn’t suffer from mobile app security issues.

Access Permissions Are the Major Culprit

Apps are not fully hosted on your device the way a desktop application might be on your computer. Rather, they are hosted in the cloud, and the app itself is more of a hard-coded shortcut that allows you access to the data or service provided by the application.

At least, that’s just how it should work in theory. According to Broadcom’s Symantec Threat Hunter, this type of single-purpose login process allows hackers to access all of the files that a cloud service contains, including company data, backups of databases, and system controls.

The scariest part is that multiple apps use the same publicly available software development kits, or SDKs, and many apps are built by the same company, allowing these login credentials to be used for multiple different types of applications and services found on the same infrastructure.

So, if a hacker were to gain access to one of the access tokens used by a company, they could potentially gain access to all of the applications which that access token provides access to.

Research conducted on Android and iOS platforms found around 2,000 applications that had their credentials hard-coded to Amazon Web Services (around three-quarters of those granting access to private cloud providers, and half of those granting access to private files), half of which also contained access tokens for unrelated applications.

What Can You Do to Protect Your Business?

Naturally, you don’t want someone to be able to access your company’s private data or the data you’ve collected from clients, employees, or other interested parties. Naturally, you should have some level of control over who within your organization can access what data.

Let’s look at it this way; the human resources department at your business might need access to employee information, but nobody else should be able to access that data. The same can be said for other data, too, according to the employee’s role within the company. The fewer people who have access to data, the less likely you are to expose said data to a security breach.

So, long story short, to keep your data safe from these types of mobile application exploits, control who can and cannot access specific data.

To learn more about how you can protect your business, call Voyage Technology at 800.618.9844.

Tweet
Tags:
Data Current Events Mobile Device
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Friday, 13 March 2026

Captcha Image

Sign Up For Our Newsletter!

Blog Categories

Mobile? Grab this Article!

Qr Code

Tag Cloud

Security Technology Tip of the Week Best Practices Data Business Computing Business Productivity Software Innovation Cloud Hackers Efficiency Hardware Network Security User Tips Internet Malware IT Services IT Support Workplace Tips Privacy Google Email Computer Phishing Workplace Strategy Hosted Solutions Collaboration Small Business Users Backup Managed Service Ransomware Mobile Device Productivity Microsoft Passwords Quick Tips Saving Money Communication AI Cybersecurity Data Backup Smartphone Disaster Recovery Data Recovery Android VoIP Upgrade Business Management Smartphones Mobile Devices communications Windows Browser Social Media Microsoft Office Managed IT Services Network Current Events Tech Term Internet of Things Remote Facebook Miscellaneous Information Holiday Automation Artificial Intelligence Gadgets Cloud Computing Covid-19 Training Compliance Remote Work Server Managed Service Provider IT Support Outsourced IT Encryption Spam Employee/Employer Relationship Office Windows 10 Government Data Management Business Continuity Virtualization Blockchain Wi-Fi Business Technology Windows 10 Bandwidth Data Security Apps Vendor Two-factor Authentication Mobile Office WiFi Apple App Employer-Employee Relationship BYOD Tip of the week Managed Services Mobile Device Management Voice over Internet Protocol Chrome Gmail Budget Networking How To BDR HIPAA Applications Computing Hacker Information Technology Access Control Avoiding Downtime Marketing Office 365 Conferencing Bring Your Own Device Big Data Router Physical Security Operating System Virtual Private Network Computers Risk Management Health 2FA Help Desk Website Office Tips Analytics Retail Augmented Reality Healthcare Storage Password Managed IT Services The Internet of Things Cooperation Free Resource Project Management Windows 7 Social Patch Management Save Money Microsoft 365 Remote Monitoring Vulnerability End of Support Going Green Vendor Management Solutions Customer Service Cybercrime Display Printer Paperless Office Windows 11 Infrastructure Monitoring Excel Document Management Remote Workers Firewall Telephone Scam Data loss Mouse Data Privacy Images 101 Administration Multi-Factor Authentication Robot Mobility Telephone System Cost Management Customer Relationship Management IT Management VPN Employees Settings Meetings Printing Wireless Integration Content Filtering User Tip Modem Hacking Presentation Processor YouTube Computer Repair Mobile Security Cryptocurrency Holidays Wireless Technology Data Storage Smart Technology Supply Chain Virtual Desktop Video Conferencing Machine Learning Managed Services Provider Data storage LiFi Saving Time Virtual Machines Professional Services Word Outlook Managed IT Service Money Maintenance Downloads Humor Antivirus iPhone Licensing Safety Entertainment Sports Vulnerabilities Education Trends Supply Chain Management Alert File Sharing Regulations Dark Data Google Calendar Term Google Apps Managed IT Customer Resource management FinTech Mobile Computing Data Analysis Star Wars IT Assessment How To Microsoft Excel IT Maintenance Gamification Flexibility Search Notifications Staff Value Business Intelligence Travel Social Networking Legislation Shortcuts Application Best Practice Organization Techology Fileless Malware Digital Security Cameras Buisness Google Maps Smart Devices Ransmoware IBM Legal IT solutions Content Remote Working Wearable Technology Memory Vendors Health IT Unified Threat Management Motherboard Data Breach Comparison Google Play Be Proactive Business Growth Unified Threat Management Directions Videos Assessment Electronic Health Records Permissions Workforce Wasting Time Threats Cortana Trend Micro Network Congestion Specifications Security Cameras Workplace Strategies Alt Codes Competition User Error Microchip Downtime Internet Exlporer Software as a Service Fraud Meta Managing Costs Amazon Hosted Solution Username Point of Sale eCommerce Black Friday SSID Typing Database Surveillance Virtual Assistant Outsource IT Tech Support IT Technicians Virtual Machine Environment Media Google Drive User Network Management Knowledge Proxy Server Reviews Cookies Monitors Cyber Monday Medical IT Tactics Development 5G Hotspot Transportation Small Businesses Experience Websites Mirgation Hypervisor Displays IP Address Google Docs Unified Communications Bitcoin Shopping Running Cable Nanotechnology Optimization PowerPoint Google Wallet SharePoint Addiction Electronic Medical Records Language Employer/Employee Relationships Outsourcing Chatbots Navigation Recovery Management PCI DSS Hard Drives Windows 8 Lenovo Gig Economy Laptop Screen Reader Writing Distributed Denial of Service Workplace Domains Drones Service Level Agreement Internet Service Provider Virtual Reality Computing Infrastructure Teamwork Hiring/Firing Private Cloud Identity Evernote Paperless Server Management Regulations Compliance Refrigeration Superfish Bookmark Halloween Identity Theft Smart Tech Memes Co-managed IT Public Speaking Download Net Neutrality Twitter Alerts SQL Server Technology Care Error History Business Communications Lithium-ion battery Financial Data Hacks Browsers Smartwatch Entrepreneur Scary Stories Connectivity IT Social Engineering Break Fix Scams Upload Procurement Fun Remote Computing Azure Hybrid Work Cyber security Multi-Factor Security Tech Human Resources Deep Learning Social Network Telework Undo CES Tablet IoT Communitications Dark Web Cables

Blog Archive

2026
2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015