1. Home
  2. Mobile apps sharing usernames, passwords, credit card details with third parties: Study

Mobile apps sharing usernames, passwords, credit card details with third parties: Study

Agencies
July 8, 2018

Washington, Jul 8: Some popular smartphone apps may be secretly taking screenshots of your activity and sending them to third parties, a study has found. This is particularly disturbing because these screenshots - and videos of your activity on the screen - could include usernames, passwords, credit card numbers, and other important personal information, researchers said.

"We found that thousands of popular apps have the ability to record your screen and anything you type," said David Choffnes, a professor at Northeastern University in the US.

"That includes your username and password, because it can record the characters you type before they turn into those little black dots," said Choffnes.

The study was designed to investigate a persistent urban legend that phones are secretly recording our conversations and then selling that information to companies so they can pepper you with targeted advertisements.

While the researchers found no evidence of recorded conversations, they discovered activity that could be even more dangerous.

"We knew we were looking for a needle in a haystack, and we were surprised to find several needles," said Choffnes.

What they found is that some companies were sending screenshots and videos of user phone activities to third parties. Although these privacy breaches appeared to be benign, they emphasised how easily a phone's privacy window could be exploited for profit.

"This opening will almost certainly be used for malicious purposes," said Christo Wilson, a professor at Northeastern.

"It's simple to install and collect this information. And what's most disturbing is that this occurs with no notification to or permission by users," said Wilson.

"In the case we caught, the information sent to a third party was zip codes, but it could just as easily have been credit card numbers," he said.

The researchers analysed over 17,000 of the most popular apps on the Android operating system, using an automated test programme written by the students.

Although the study was conducted on Android phones, researchers said there is no reason to believe that other phone operating systems would be less vulnerable.

In all, 9,000 of the 17,000 apps had the potential to take screenshots.

"In one case, the app took video of the screen activity and sent that information to a third party," said Wilson.

That app was GoPuff, a fast-food delivery service, which sent the screenshots to Appsee, a data analytics firm for mobile devices. All this was done without the awareness of app users.

Researchers emphasised that neither company appeared to have any nefarious intent. They said that web developers commonly use this type of information to debug their apps and improve the user experience.

However, that does not mean a malicious company could not use this privacy window to steal personal information for profit.

"That has the potential to be much worse than having the camera taking pictures of the ceiling or the microphone recording pointless conversations. There is no easy way to close this privacy opening," said Choffnes.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
December 7,2025

SHRIMP.jpg

Mangaluru, Dec 7: A rare bamboo shrimp has been rediscovered on mainland India more than 70 years after it was last reported, confirming for the first time the presence of Atyopsis spinipes in the country. The find was made by researchers from the Centre for Climate Change Studies at Sathyabama Institute of Science and Technology, Chennai, during surveys in Karnataka and Odisha.

The team — shrimp expert Dr S Prakash, PhD scholar K Kunjulakshmi, and Mangaluru-based researcher Maclean Antony Santos — combined field surveys, ecological assessments and DNA analysis to identify the elusive species. Their findings, published in Zootaxa, resolve decades of taxonomic confusion stemming from a 1951 report that misidentified the species as Atyopsis moluccensis without strong evidence.

The shrimp has now been confirmed at two locations: the Mulki–Pavanje estuary near Mangaluru and the Kuakhai River in Bhubaneswar. Historical specimens from the Andaman Islands, previously labelled as A. moluccensis, were also found to be misidentified and actually belong to A. spinipes.

The rediscovery began after an aquarium hobbyist in Odisha spotted a shrimp in 2022, prompting systematic surveys across Udupi, Karwar and Mangaluru. Four female specimens were collected in Mulki and one in Odisha, all genetically matching.

Researchers warn the species may exist in very small, vulnerable populations as freshwater habitats face increasing pressure from pollution, sand mining and infrastructure development. All verified specimens have been deposited with the Zoological Survey of India for future reference.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
December 1,2025

hindutvaboy.jpg

Udupi, Dec 1: A horrific case of alleged rape has unfolded in Udupi, where a worker from a Hindutva organisation, previously arrested and released on bail for harassing a young woman, is now accused of waylaying and sexually assaulting her.

The arrested individual has been identified as Pradeep Poojary (26), a member of the Hindu Jagarana Vedike's Nairkode unit in Perdur.

Poojary had allegedly been relentlessly harassing the young woman, pressuring her to marry him. When she bravely stood up to him and refused his demands, she filed a formal complaint at the Hiriyadka police station. He was subsequently arrested in that initial harassment case but was later granted bail.

According to police reports, driven by the same malicious grudge, Poojary allegedly intercepted the woman again on November 29. While she was walking through a deserted area, the accused is claimed to have threatened her by grabbing her neck. When she again refused to marry him, he allegedly proceeded to rape her.

The survivor immediately informed her family about the traumatic assault. Following this, her parents lodged a complaint at the Udupi women’s police station.

Police arrested Poojary again and produced him before the court. He has since been remanded to judicial custody.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.