Blog

Top 10 most common mobile app vulnerabilities 2016

This year OWASP has updated the report. Survey results identified the top ten mobile vulnerabilities with the most frequent ones being weak server side controls, insecure data storage, and insufficient transport layer protection.
6 July 2016
Cybersecurity testing
Mobile app testing
The article by a1qa
a1qa

In 2014 OWASP (Open Web Application Security Project) conducted a poll to gather mobile apps vulnerability statistics. The objective was to level up the mobile security and to allow individuals and companies worldwide to make informed decisions in the course of their mobile app development and security testing.

Survey results identified the top ten mobile vulnerabilities with the most frequent ones being weak server side controls, insecure data storage, and insufficient transport layer protection.

This year OWASP has updated the report. The surveyed audience has mainly included penetration testers (38%), security specialists (35.2%), security engineers and designers (27%).

The obtained results has revealed that during the last two years developers worked hard to secure coding and configuration practices used on server-side of the mobile application, establish mechanisms to protect data stored and ensure sufficient transport layer protection. Thus, the vulnerabilities 2014 have almost been combatted while the new bottlenecks have appeared.

OWASP Top 10 mobile vulnerabilities 2016

  • M1 Improper Platform Usage (new!)
  • M2 Insecure Data Storage
  • M3 Insecure Communication
  • M4 Insecure Authentication
  • M5 Insufficient Cryptography
  • M6 Insecure Authorization
  • M7 Client Code Quality (new!)
  • M8 Code Tampering (new!)
  • M9 Reverse Engineering (new!)
  • M10 Extraneous Functionality (new!)

As for a1qa, keeping our customers’ information secure and private is a top priority for our QA experts. We greatly appreciate the OWASP survey results and consider them when testing and assessing security of our customers’ mobile products.

More Posts

Navigating the future: QA trends that will define 2024. Part 2
30 January 2024,
by a1qa
4 min read
Navigating the future: QA trends that will define 2024. Part 2
We continue exploring QA trends, helping businesses remain competitive in 2024.
Cloud-based testing
Cybersecurity testing
QA trends
Quality assurance
The year in valuable conversations: recapping 2023 a1qa’s roundtables for IT executives 
8 December 2023,
by a1qa
3 min read
The year in valuable conversations: recapping 2023 a1qa’s roundtables for IT executives 
From dissecting novel industry trends to navigating effective ways of enhancing software quality — let’s recall all a1qa’s roundtables. Join us!
Big data testing
Cybersecurity testing
Functional testing
General
Interviews
Performance testing
QA trends
Quality assurance
Test automation
Usability testing
Web app testing
black-friday
22 November 2023,
by a1qa
4 min read
Get ready for Black-Friday-to-Cyber-Monday shopping: 5 testing types to include in your QA strategy
What’s your nightmare during Black Friday and Cyber Monday shopping? If it’s a loss of sales, read about the ways to prevent this in the article.
Cybersecurity testing
Functional testing
Localization testing
Performance testing
Usability testing
6 top reasons why business should invest in software quality
9 November 2023,
by a1qa
4 min read
6 top reasons why business should invest in software quality
We congratulate you on the World Quality Day with the article by Alina Karachun, Account director at a1qa, having 10+ years of QA expertise. Delve into it to explore the reasons why businesses should prioritize software quality.
Cybersecurity testing
Functional testing
General
Interviews
Performance testing
Quality assurance
streaming services
30 October 2023,
by a1qa
3 min read
Enable crash-proof streaming platforms for Holidays season
Ho ho ho! It’s time to prepare your streaming products for the influx of viewers. Read about how to put peak-load anxiety behind by applying rigorous testing of your IT solution.
Cybersecurity testing
Functional testing
Performance testing
Usability testing
On the way to Web 3.0: key software testing aspects for seamless digital experiences. Part 2
12 October 2023,
by a1qa
4 min read
On the way to Web 3.0: key software testing aspects for seamless digital experiences. Part 2
Let’s analyze essential software testing checks to improve the quality of the business-critical Web 3.0 functionality.
Cybersecurity testing
Functional testing
Performance testing
Quality assurance
Test automation
Usability testing
gaming-qa
24 August 2023,
by a1qa
4 min read
Ready, steady, test: How QA drives seamless gaming experiences
Why is QA pivotal for delivering unmatched player experiences? How to level up video game quality? Find the answers in the article.
Cybersecurity testing
Functional testing
Localization testing
Performance testing
Quality assurance
Test automation
Usability testing
12jun202311
22 June 2023,
by a1qa
4 min read
The ins and outs of ensuring OSS/BSS software quality: a hands-on guide
The need for OSS/BSS’ flawless operation is undisputable, but how can we reach that goal? Inter alia, a1qa suggests focusing on delivering high software quality to the end users.
Cybersecurity testing
Functional testing
General
Performance testing
6-march-2023-1
21 March 2023,
by a1qa
4 min read
The ultimate QA guide for smoothly migrating to Web 3.0
Find out how businesses can seamlessly migrate to Web 3.0 by relying on quality assurance.
Cybersecurity testing
General
Performance testing
Usability testing

Get in touch

Please fill in the required field.
Email address seems invalid.
Please fill in the required field.
We use cookies on our website to improve its functionality and to enhance your user experience. We also use cookies for analytics. If you continue to browse this website, we will assume you agree that we can place cookies on your device. For more details, please read our Privacy and Cookies Policy.