Press Release

Intertrust Releases 2020 Security Report on Global mHealth App Threats

The report reveals critical threats to Healthcare apps based on the detailed audit of 100 iOS & Android mobile applications.

Report on Global mHealth App Threats

An audit of the top 100 Android and iOS healthcare apps revealed major threats, data leakages, cryptographic shortcomings, and other security breaches of healthcare mobile apps across the globe. These findings highlight the gaps in data security & pinpoint areas where massive improvement is required in the post-COVID 19 remote healthcare boost.

SAN FRANCISCO- September 29, 2020 - Intertrust is a leading company in application security solutions and digital rights management (DRM) technology. They released their 2020 Security Report on Global mHealth Apps. The crucial and invaluable findings showcased the vulnerability of mobile healthcare apps across the world. 71% of medical applications showed one critical shortcoming that could result in the breach of the user's medical data. The report put 100 global healthcare apps under the lens to study threatening mHealth security trends. Investigated apps ranged across various categories- COVID tracking, telehealth, medical device, and health commerce.

The most serious and prevalent issue was of Cryptography. About 91% of apps failed in at least one cryptographic test. Implying that the encryption used in most applications could be easily broken, increasing risk to patient's medical data. Such apps invite malicious hackers to tamper, steal, or use the data for personal use.

The study's conclusive findings revealed that the massive push to revolutionize remote healthcare apps in a COVID 19 world comes at the cost of mobile data security. 

Bill Horne, CTO at Intertrust and General Manager of Secure Systems product group commented on this "Unfortunately, there’s been a history of security vulnerabilities in the healthcare and medical space. Things are getting a lot better, but we still have a lot of work to do" He then expressed in a more positive note "The good news is that application protection strategies and technologies can help healthcare organizations bring the security of their apps up to speed."

The Intertrust security report on medical and healthcare mobile applications derived its findings on the basis of a detailed audit of 100 Android & iOS apps from worldwide organizations. All of the audited apps underwent a full host of Dynamic application security testing (DAST) and Static application security testing (SAST) based on the Open web application security project or OWASP mobile security testing. 

Some major highlights from the report: 

  • 91% of medical apps have mishandled &/or have inefficient and weak encryptions that substantially increase the intellectual property theft and put the user data at risk.
  • It was worrying to note that 85% of COVID 19 tracking apps leaked data. 
  • 83% of the discovered high-level threats could have been easily managed with the use of app protection technologies like tampering detection, code obfuscation, and white-box cryptography. 
  • Out of the tested apps, 71% showed at least one major soft spot in their security.
  • 60% of the tested Android apps were storing information in SharedPreferences, leaving data unprotected and unencrypted. Most applications had some issues with data storage security. 
  • 28% of iOS apps and 34% of Android applications are vulnerable to encryption key extraction. 

Download the complete Intertrust Security Report on Global mHealth Apps 2020

Details on medical application protection can be found here

About Intertrust

Intertrust provides services and trusted computing products to consumer electronics, service providers, IoT manufacturers, mobile app industry leaders, and enterprise software platform companies. Products include software tamper resistance, the world's top digital rights management (DRM), and technologies to enable private data exchanges for many verticals including automotive, fintech, energy, entertainment, IoT, and retail/marketing. Founded in 1990 and headquartered in Silicon Valley with offices in London, Tokyo, Bangalore, Mumbai, Seoul, Beijing, Riga, and Tallinn. Intertrust has a renowned legacy of creative innovation and contributions in the area of digital trust and computer security. We hold hundreds of patents that are critical to privacy management components of OS, trust, internet security, trusted mobile code and network operating environments, cloud computing, and web services.
 

Tanya <span>Editor In Chief</span>
Written By
Tanya Editor In Chief

She is a content marketer and has more than five years of experience in IoT, blockchain, Web, and mobile development. In all these years, she closely followed the app development, and now she writes about the existing and the upcoming mobile app technologies. Her essence is more like a ballet dancer.

Press Release

Swiggy Hires Dale Vaz As The Company's New Head Of Engineering And Data Science

4 min read  

Swiggy, India based food delivery service has appointed its new Engineering head for the company’s exponential growth. Dale Vaz has been appointed as the company’s new Head of Engineering and Data Science. He will be leading Swiggy’s talented technical team for boosting up the comp

Press Release

Innov8tif Partners with ID R&D for Remote Customer Onboarding

4 min read  

ID R&D, an award-winning biometric technology provider, announced today a new partnership with Innov8tif, a leading software provider in Southeast Asia, enabling businesses to digitize business processes.The partnership allows Innov8tif to integrate ID R&D’s IDLiveTM Face into its

Press Release

Adjust Data Reveals a Significant Spike in Mobile App Usage On Valentine’s Day

4 min read  

San Francisco / Berlin, February 10, 2020 — With Valentine’s Day just around the corner, many of the people will be pondering over dating apps and match-making websites. But there is much more that goes into the planning for February 14. Right from deciding the gifts to buy ride-booking

Press Release

dayzz Launches Personalized Sleep Training App Based on Big Data Analysis

4 min read  

Innovative corporate sleep solution provider dayzz launched today its sleep training app built for enterprise workforces, which will help improve sleep while reducing employer costs related to decreased productivity, accidents, and inefficient health care utilization. In the US, over 30% of the adul

MAD Originals
MAD Originals

Cut to the chase content that’s credible, insightful & actionable.

Get the latest mashup of the App Industry Exclusively Inboxed

  • PRODUCTS
  • SERVICES
  • BOTH
Join our expansive network, build connections and expand your brand presence.