Skip to main content
  1. Home
  2. Mobile
  3. News

Security researchers warn against using shady VPN Android apps

By

Maksim Kabakou / 123RF
If you’ve ever needed to conduct business over the internet somewhat privately on your phone, a virtual private network — or VPN, for short — is an excellent way to go about it. It’s basically an encrypted third-party middleman that sits between you and the wider internet, protecting your data from prying eyes.

And its practically foolproof — even if a hacker were to penetrate the “tunnel,” so to speak, they would struggle to read the data within. But to use a virtual private network, you need an app, and not all apps are as secure as the virtual private network itself.

Recommended Videos

Security researchers at CSIRO’s Data 61, the University of New South Wales, and UC Berkeley studied 283 VPN apps for Android available from the Google Play Store. A whopping 38 percent of the apps on the Google Play Store that were tested contained some form of malware, adware, trojan, or spyware, while 67 percent featured at least one third-party tracking library. As many as 82 percent requested permissions to access sensitive user data, including text messages and call logs.

The researchers categorized the “worst offenders” — apps with an excessive amount of malware — in a top-ten chart.

And to make matters worse, many fell short of delivering the anonymity they promised. Around 18 percent of the VPN apps didn’t encrypt traffic, and 16 percent routed traffic through other users of the same app rather than a dedicated server. And as many as 66 percent leaked traffic, which the researchers noted could “ease online tracking activities” performed by unscrupulous Wi-Fi hot spot administrators and “surveillance agencies.”

Related

Worryingly, more than 25 percent of the apps received at least a 4-star rating. “According to the number of installs of these apps, millions of users appear to trust VPN apps despite their potential maliciousness. In fact, the high presence of malware activity in VPN apps that our analysis has revealed is worrisome given the ability that these apps already have to inspect and analyze all user’s traffic with the VPN permission,” the researchers wrote.

Ultimately, the survey’s authors recommend “looking before you leap,” in a sense — in other words, researching the VPN apps you’re considering and ensuring they act and behave as advertised. Be especially wary of free apps, they say. Stick to well-known companies that are transparent about their practices. And if an app requests access to sensitive information during the installation process for no good reason, it’s probably best to get rid of it.

Editors’ Recommendations

Topics
Kyle Wiggers
Kyle Wiggers
Former Digital Trends Contributor
Kyle Wiggers is a writer, Web designer, and podcaster with an acute interest in all things tech. When not reviewing gadgets…
Best early Black Friday deals under $100: Amazon Echo, TVs, headphones and more
The Amazon Echo Pop on a desk.

Update 11/19/24: Black Friday is still over a week away, but you can already start your shopping with the Black Friday deals under $100 that we've gathered here. There's a possibility that these affordable items get even bigger discounts when the sale officially launches, but we won't blame you if you're already tempted by today's prices.

Black Friday will start on November 29, but if you've already got the itch to shop, check out the early Black Friday deals under $100 that we've gathered here. The offers cover smart home devices, laptops, TVs, kitchen gadgets, and so much more, so if you want to start enjoying discounts without blowing your entire budget for the shopping event, take a look at our favorite bargains below.

Read more
The Galaxy A56 may get one of the S24 Ultra’s top features
A person using the Samsung Galaxy A55.

Samsung may be ready to change one of the long-standing negatives about its otherwise desirable Galaxy A5x series phones — the charging speed. For the Galaxy A55’s replacement, currently expected to be called the Galaxy A56, Samsung may introduce 45-watt charging speeds, a big increase over the current 25W charging, according to a report originating in China.

The source is an official-looking certificate from the Chinese government’s Quality Certification Centre (CQC) which is responsible for ensuring devices sold in China meet the required standards. The phone is listed as the SM-A5660, and seeing as the Galaxy A55’s model number is the SM-A556, it’s not much of a stretch to assume we’re looking at details of the unreleased Galaxy A56. Apparently, the phone’s maximum 10V/4.5A system equates to a 45W charging speed.

Read more
I used a Wear OS smartwatch for the first time, and I love it
Someone wearing an Apple Watch Ultra and Pixel Watch 3 on different wrists.

Ever since the original Apple Watch, smartwatches as a whole have really taken off. Though Apple largely dominates the market, there are still plenty of non-Apple smartwatches to choose from.

I’ve been solely an Apple Watch user for the past decade, but I’ve been trying out a Google Pixel Watch 3 for the past couple of weeks. And, honestly, I kind of love it.
A round smartwatch is so much sleeker

Read more