Skip to main content
  1. Home
  2. Mobile
  3. News

Security researchers warn against using shady VPN Android apps

By

Maksim Kabakou / 123RF
If you’ve ever needed to conduct business over the internet somewhat privately on your phone, a virtual private network — or VPN, for short — is an excellent way to go about it. It’s basically an encrypted third-party middleman that sits between you and the wider internet, protecting your data from prying eyes.

And its practically foolproof — even if a hacker were to penetrate the “tunnel,” so to speak, they would struggle to read the data within. But to use a virtual private network, you need an app, and not all apps are as secure as the virtual private network itself.

Recommended Videos

Security researchers at CSIRO’s Data 61, the University of New South Wales, and UC Berkeley studied 283 VPN apps for Android available from the Google Play Store. A whopping 38 percent of the apps on the Google Play Store that were tested contained some form of malware, adware, trojan, or spyware, while 67 percent featured at least one third-party tracking library. As many as 82 percent requested permissions to access sensitive user data, including text messages and call logs.

The researchers categorized the “worst offenders” — apps with an excessive amount of malware — in a top-ten chart.

And to make matters worse, many fell short of delivering the anonymity they promised. Around 18 percent of the VPN apps didn’t encrypt traffic, and 16 percent routed traffic through other users of the same app rather than a dedicated server. And as many as 66 percent leaked traffic, which the researchers noted could “ease online tracking activities” performed by unscrupulous Wi-Fi hot spot administrators and “surveillance agencies.”

Related

Worryingly, more than 25 percent of the apps received at least a 4-star rating. “According to the number of installs of these apps, millions of users appear to trust VPN apps despite their potential maliciousness. In fact, the high presence of malware activity in VPN apps that our analysis has revealed is worrisome given the ability that these apps already have to inspect and analyze all user’s traffic with the VPN permission,” the researchers wrote.

Ultimately, the survey’s authors recommend “looking before you leap,” in a sense — in other words, researching the VPN apps you’re considering and ensuring they act and behave as advertised. Be especially wary of free apps, they say. Stick to well-known companies that are transparent about their practices. And if an app requests access to sensitive information during the installation process for no good reason, it’s probably best to get rid of it.

Editors' Recommendations

Topics
Kyle Wiggers
Kyle Wiggers
Former Digital Trends Contributor
Kyle Wiggers is a writer, Web designer, and podcaster with an acute interest in all things tech. When not reviewing gadgets…
Buy the new Google Pixel 8a and get a free $100 Amazon Gift Card
Google Pixel 8a home screen.

The recently released Google Pixel 8a is already available from Amazon's phone deals. There's no discount yet for the Android-powered smartphone, but if you buy it for its sticker price of $499, you'll get an Amazon Gift Card worth $100 for free. That's an excellent deal for a brand new device, but there's not a lot of time left for you to take advantage of this offer. To make sure that you get the gift card, it's highly recommended that you push through with your purchase as soon as possible.

Why you should buy the Google Pixel 8a
The Google Pixel 8a is the latest addition to the Google Pixel line of smartphones. It features a 6.1-inch OLED touchscreen that's both gorgeous and responsive, IP67 resistance against water and dust, and 128GB of internal storage. The smartphone also packs Google AI, which will make it much easier to accomplish your everyday tasks.

Read more
How to watch TikTok without the app
TikTok being viewed through a mobile web browser.

Love it or hate it, TikTok is hard to avoid in 2024. From cat videos, news roundups, gameplay videos, and more, you can find just about anything on the popular video app.

Read more
The new iPad Pro just surprised everyone
The iPad Pro (2024) during JerryRigEverything's bend test.

When a new iPad is released, it is common for organizations to conduct bend durability tests. Recently, JerryRigEverything, AppleTrack, and MobileReviewEh were the first to perform these tests on both the 11-inch and 13-inch iPad Pro (2024). The results were positive, which is especially surprising given how thin both tablets are.

The two new iPad Pro models, introduced earlier this month, are the thinnest yet. The new 11-inch model has a depth of just 0.21 inches, compared to 0.23 inches for the 2022 model. Meanwhile, the 13-inch version is just 0.20 inches in depth, compared to 0.25 inches for the sixth-generation 12.9-inch iPad Pro.

Read more