View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
September 25, 2015

NHS-accredited health apps vulnerable to hacking

News: Researchers say apps do not protect personal data.

By CBR Staff Writer

A new study has revealed that several NHS-accredited smartphone health apps that store personal data of patients are vulnerable to hacking.

Researchers from Imperial College London found that some apps don’t follow privacy standards and transmit information without encryption.

They investigated how data was protected in the NHS Health Apps Library and identified that unencrypted personal and medical data was sent over the internet.

Researchers tested 79 separate apps listed in the NHS library over a six month period in 2013. They found that 70 sent data over the internet.

Lead researcher Kit Huckvale said: "It is known that apps available through general marketplaces had poor and variable privacy practices, for example, failing to disclose personal data collected and sent to a third party.

"However, it was assumed that accredited apps – those that had been badged as trustworthy by organisational programs such as the UK’s NHS Health Apps Library – would be free of such issues."

The study indicated that the privacy of accredited apps users may have been put at risk unnecessarily.

Content from our partners
Unlocking growth through hybrid cloud: 5 key takeaways
How businesses can safeguard themselves on the cyber frontline
How hackers’ tactics are evolving in an increasingly complex landscape

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.