A VPN researcher found that many Android VPN apps request access to sensitive permissions that they don’t need, according to an article shared by WaitingForSupport. ZDNet reports:
The study, carried out by John Mason from TheBestVPN.com, analyzed 81 Android apps available for download through the Google Play Store. Mason said he downloaded and extracted the permissions requested by each VPN app from their respective APK installer files…. According to Mason, 50 of the 81 Android VPN apps he tested requested access to at least one dangerous permission that accessed user data…
Mason said he discovered VPN apps that requested access to read/write permissions for external device storage, wanted access to precise location data, wanted the ability to read or write system settings, and, in some cases, wanted to access call logs or manage local files. “In theory, VPN apps should only need a few permissions to function. INTERNET and ACCESS_NETWORK_STATE should usually be enough,” Mason told us. “The use of a large number of dangerous permissions could be cause for suspicion.”
of this story at Slashdot.
Source:: Slashdot