state of mobile application security in india · mobile owasp top 10 detected by indusface weak...
TRANSCRIPT
www.indusface.comVADODARA | BANGALORE | MUMBAI | DELHI
Mobile OWASP Top 10 Detected by Indusface
Weak Server Side Controls
10%M1
Insecure Data Storage
23%M2
Insufficient Transport Layer Protection
8%M3
Unintended Data Leakage
17%M4
Poor Authorization and Authentication
2%M5
Broken Cryptography
7%M6
Client Side Injection
1%M7
Improper Session Handling
11%M9
Lack of Binary Protections
19%M10
Security Decisions via untrusted inputs
3%M8
How Mobile Apps may invade your privacy?Your mobile device can share all sorts of personal information
Mobile Application Testing Conducted by Indusface
Vulnerabilities Detected
69% BFSI
15% Retail / E-Commerce
16% Enterprice
BFSI Retail/E-Commerce Enterprise
OWASP Mobile Vulnerability % Detected in BFSI Apps
OWASP Mobile Vulnerability % Detected in Retail Apps
OWASP Mobile Vulnerability % Detected in Enterprise Apps
Critical High Medium Low Informational
16% 16%14%
30%27%
43%
67%
37%
43%
10%1% 1%22%
27%42%
8%
13% 18% 20%
23%
9%16%
3%
10%
1%1% 7%
10%
21%
8%10%
5%4%1%
0%
16%
17%
21%
10%16%
19%
9%
3%1%6%
2%
M1 M2 M3 M4
M5
M6
M7
M8
M9
M10
M1 M2 M3 M4 M
5 M6 M
7 M8
M
9
M10
M1 M2 M3
M4
M
5
M6
M
7 M
8
M
9
M10
50%
50%
47%
53%
52%
48%
Critical High Medium Low
M1 50% | 50%
M2 63% | 37%
M3 41% | 59%
M4 45% | 55%
M5 69% | 31%
M6 42% | 58%
M7 100%
M8 63% | 37%
M9 53% | 47%
M10 60% | 40%
State of Security in the App Economy
Top 100 Paid Apps Popular Free Apps
Apple IOS Android IOS Apple IOS Android IOS
100%56% 44% 53%73%
47%27%
HACKED NOT HACKED
State of Mobile Application Security in India
State of Mobile Application Security in India
of Android
Apps 82%and 100% of malware track your network use, when you use your device and your location
35% of the most privacy
threatening apps also contain
malware