MD-ARXAN-TECHNOLOGIES

21.11.2014 10:44:49 CET | Business Wire | Pressemeddelelse

Del

Arxan’s Annual Report: ‘State of Mobile App Security’ Reveals an Increase in App Hacks for Top 100 Mobile Apps

Arxan Technologies , the leading provider of application protection solutions, has just released its third annual State of Mobile App Security report , which reveals that 97% of the top 100 paid Android apps and 87% of the top 100 paid Apple iOS apps have been hacked. In addition to an increase in app hacks found for commonly downloaded Popular Free apps, this year’s research also reveals evidence of widespread hacking of financial services, healthcare/medical, and retail/merchant apps; largely driven by hacks of Android apps.

Arxan’s 2014 State of Mobile App Security report updates previous years’ indicators on the prevalence of hacked apps on the two major platforms (iOS and Android). The findings of increased app hacking is especially noteworthy amidst today’s rapid growth in global mobile app usage. Free app downloads are forecasted to increase at a rate of 99% to reach 253 billion downloads in 2017 and paid app downloads are projected to reach almost 15 billion, a 33% increase by 2017¹ .This explosion in app usage is seen across all verticals and lead by apps running on the Android mobile operating system, which continues to dominate with 85% market share² .

The report, which comes on the heels of a number of recent mobile application-based attacks, such as Wirelurker and Masque, highlights the imminent and growing need for mobile applications to contain self-protections. Key findings from the 2014 report include:

Top 100 Paid Apps and Popular Free App reveal widespread hacking
- 97% of top 100 paid Android apps and 87% of top 100 paid iOS apps have been hacked – This finding of a high percentage for Android hacked apps is in line with results from prior years. However, the iOS percentage represents a sharp increase over 2013, when 56% of iOS apps were found to be hacked
- 80% of Popular Free Android apps have been hacked and 75% of the Popular Free iOS apps have been hacked – The percentage of popular iOS apps hacked has steadily increased over the last 3 years
App Hacking Targets Mobile Apps Across High Risk Verticals
- Mobile financial apps are still at risk – 95% of the Android financial apps reviewed were “cracked” while 70% of the iOS financial apps were hacked. This is an increase in both cases, with Android’s growing about 80%
- 90% of Retail/Merchant Android apps and 35% of Retail/Merchant iOS apps have been compromised – Hackers are targeting growth in B2C retail apps, as stores launch mobile payment/wallet services, and in B2B merchant point-of-sale apps. In both cases sensitive data, IP, and financial transactions are at risk
- 90% of Android Healthcare/Medical apps have been hacked, 22% of which are FDA approved

Proactive measures to protect against application risks are being championed by industry leaders such as Gartner’s application security analyst, Joseph Feiman. In Feiman’s recent Maverick report, he advises CISO’s to “Make application self-protection a new investment priority, ahead of perimeter and infrastructure protection.” “Runtime Application Self Protection (RASP) is designed to protect applications by adding protection features into the application runtime environment.”³

Echoing security leaders, Arxan’s State of Mobile App Security report includes key recommendations to improve the security of mobile applications. Among other recommendations, the report recommends that:

Applications with high-risk profiles running on any mobile platform should be made tamper-resistant and capable of defending themselves and detecting threats at runtime
All applications should be developed to maintain the confidentiality of the application/code
The software that is used to enable mobile wallets/payment apps (e.g., Host Card Emulation software) should be protected with secure crypto and app hardening .
Organizations should consider mobile app assessments to assess if existing apps are exposed to risks that are unique to mobile environments. Also, as part of the mobile app development lifecycle, organizations should conduct Penetration Tests that, among other things, should assess vulnerability to reverse engineering and tampering that can result from unprotected binary code.

Arxan’s 2014 “State of Mobile App Security ” report and supporting Infographic are now available. The findings were based on analysis of 360 apps, including 100 top paid and the same 20 popular free apps from each platform, as well as 40 apps in the financial services, retail/merchant, and healthcare/medical categories (20 apps per platform).

“The pursuit of greater mobile application security remains at the forefront our research and development initiatives,” said Jonathan Carter, technical director at Arxan. “We continue to evolve our security innovations based on emerging threats to ensure the strongest application protection for our customers in the dynamic battlefield against hackers.”

About Arxan Technologies

Arxan provides the world’s strongest application protection solutions. Our unique patented guarding technology 1) Defends applications against attacks, 2) Detects when an attack is being attempted, and 3) Responds to detected attacks with alerts and repairs. Arxan offers solutions for software running on mobile devices, desktops, servers, and embedded platforms – including those connected as part of the Internet of Things (IOT) – and is currently protecting applications running on more than 300 million devices across a range of industries, including: financial services, high tech/independent software vendors (ISVs), manufacturing, healthcare, digital media, gaming, and others. The company's headquarters and engineering operations are based in the United States with global offices in EMEA and APAC.

¹ statista - Number of mobile apps downloads worldwide statistics
² source: IDC Q2 2014 Report
³ Gartner Maverick* Research: Stop Protecting Your Apps; It's Time for Apps to Protect Themselves, Joseph Feiman, September 25, 2014

Follow Arxan:
Twitter: http://twitter.com/arxan
Blog: http://blog.arxan.com/
LinkedIn: https://www.linkedin.com/company/arxan-technologies
Facebook: https://www.facebook.com/pages/Arxan-Technologies/290902575878

Contact:

Media:
éclat Marketing
Kim Smith / Jenny Davis, +44 (0) 1276 486000
arxan@eclat.co.uk
or
Arxan Technologies
Jodi Wadhwa, 1-301-968-4295
jwadhwa@arxan.com

Information om Business Wire

Business Wire
101 California Street, 20th Floor
CA 94111 San Francisco

http://businesswire.com

Følg pressemeddelelser fra Business Wire

Skriv dig op her, og modtag pressemeddelelser på e-mail. Indtast din e-mail, klik på abonner, og følg instruktionerne i den udsendte e-mail.

Flere pressemeddelelser fra Business Wire

Invivoscribe Expands Flow Cytometry Services to Accelerate CAR-T Immunotherapy Development and Regulatory Readiness with the Initiation of CERo Therapeutics Phase 1 Clinical Trial8.7.2025 06:00:00 CEST | Press release

Invivoscribe Inc., a global leader in precision diagnostics and measurable residual disease (MRD) testing, is proud to support CERo Therapeutics Holdings, Inc., an innovative immunotherapy company seeking to advance the next generation of engineered T cell therapeutics that employ phagocytic mechanisms. Through this collaboration, LabPMM (Invivoscribe’s global reference laboratories) have customized their multiparametric flow cytometry (MFC) services and implemented their sensitive MFC AML MRD assay to supportCERo’s clinical trial of its lead compound, CER-1236. The trial targets Acute Myeloid Leukemia (AML) in patients who are relapsed/refractory, in remission with MRD, or newly diagnosed with TP53-mutated MDS/AML. AML is an aggressive blood cancer characterized by the rapid accumulation of abnormal myeloid cells in the bone marrow and blood, disrupting normal hematopoiesis.1 Treating AML is especially complex due to its genetic heterogeneity and the high risk of relapse. CAR-T (chime

Tigo Energy Adds Solar-Plus-Storage Portfolio in Czech Republic to Build on MLPE Success8.7.2025 06:00:00 CEST | Press release

Successful PPDS P4 protocol certification opens full range of three-phase Tigo EI Inverters and the EI Residential product suite for grid connection in second-strongest E.U. market for Tigo. Tigo Energy, Inc. (NASDAQ: TYGO) (“Tigo” or “Company”), a leading provider of intelligent solar and energy software solutions, today announced that the Company’s entire portfolio of three-phase Tigo EI Inverters has successfully passed the certification tests for compliance with the PPDS P4 requirements in the Czech Republic. Compliance with PPDS P4, formally known as Distribution System Operation Rules, Annex 4, is a prerequisite for grid connection of solar inverters in the Czech Republic, validating the compatibility with the technical conditions defined by the European Commission and adopted by local utility companies. In the wake of the proliferation of rapid shutdown requirements across Europe, with installers in the Czech Republic deploying nearly 107MW of Tigo MLPE in 2024, Tigo products ha

Murata Launches World’s First High-Frequency Filter Using XBAR Technology for 5G, Wi-Fi 7, and Future 6G Networks8.7.2025 04:00:00 CEST | Press release

Murata Manufacturing Co., Ltd. (TOKYO: 6981) (ISIN: JP3914400001) has announced the mass production and commercial shipment of the world’s first*1 high-frequency filter using XBAR technology*2. Developed by combining Murata’s proprietary Surface Acoustic Wave (SAW) filter expertise with XBAR technology from Murata's subsidiary Resonant Inc., it enables the extraction of desired signals while achieving both low insertion loss and high attenuation. These features are critical for the latest wireless technologies, including 5G, Wi-Fi 6E, Wi-Fi 7, and emerging 6G technologies. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250707682186/en/ [Murata Manufacturing Co., Ltd.] The world’s first high-frequency filter using XBAR technology The demand for reliable high-frequency communications continues to grow in response to the widespread deployment of 5G and the future development of 6G. Simultaneously, wireless local-area network (W

YES Delivers Multiple VertaCure LX Systems7.7.2025 21:34:00 CEST | Press release

Yield Engineering Systems (YES), a leading provider of process equipment for AI and HPC semiconductor applications, today announced the delivery of multiple VertaCure™ LX curing systems to one of Taiwan’s top outsourced semiconductor assembly and test (OSAT) providers. These systems will support advanced packaging processes for Edge Computing and HPC solutions, delivering critical low-temperature curing, annealing, and degassing for WLCSP, Plated Bump, and Cu Pillar applications. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250703001376/en/ VertaCure LX The VertaCure LX is a fully automated vacuum curing and degassing system engineered to ensure uniform temperature distribution and precise control of heating and cooling rates. This results in complete solvent removal, improved film properties, elimination of outgassing after cure, and outstanding particle performance. YES products have consistently demonstrated superior qu

Nakiki SE plans strategic realignment toward a “pure” Bitcoin treasury strategy7.7.2025 20:31:00 CEST | Press release

- Aiming to build a Bitcoin portfolio - Change of name and capital measures planned Nakiki SE (ISIN: DE000WNDL300) is planning a strategic realignment with the aim of becoming the first German listed company with a pure Bitcoin treasury strategy. A Bitcoin treasury strategy means that a company focuses its investments on Bitcoin. The course for building a Bitcoin portfolio was set today following discussions with potential investors, placing banks, and Bitcoin experts. At the annual general meeting to be held in the second half of 2025, a change of name will be proposed in addition to an adjustment of the company's purpose. In addition, discussions are being held with anchor investors to secure the funds required to finance the Bitcoin portfolio through capital increases. Language: English Company: Nakiki SE Hanauer Landstr. 204 60314 Frankfurt on the Main Germany E-mail: info@nakikifinance.com Internet: https://nakikifinance.com/ ISIN: DE000WNDL300, DE000WNDL318 WKN: WNDL30, WNDL31 Li

I vores nyhedsrum kan du læse alle vores pressemeddelelser, tilgå materiale i form af billeder og dokumenter samt finde vores kontaktoplysninger.

Besøg vores nyhedsrum