PETALING JAYA: Tech experts have raised security concerns over PAS’s super app, which includes features such as e-wallet functionality and bill payment services, as it is not downloadable from registered platforms.
Launched on Sunday, the MyOnePAS app requires users to sideload it from a website.
Sideloading is the practice of installing software and apps on a device from sources other than the official app stores such as those run by Apple and Google.
T Murugason, CEO of Novem CS, a cybersecurity company, said sideloading apps poses significant risks.
“Given that sideloaded apps bypass the security protocols established by app stores, users face a heightened risk of coming across malware or other malicious software,” he told FMT.
He said this makes them susceptible to malicious codes.
“Moreover, certain apps may be embedded with spyware, which can harvest personal details from your device and relay them to undesirable parties,” he said.
Murugason said it would be better for users to download apps from the official stores since these platforms perform rigorous screening to ensure they are free of malware.
Software engineer L Raaj advised users not to download the PAS app for now, saying the security risks associated with it are “high”.
However, he said he understood why the party would release the app as an APK (Android Application Package).
An APK is the file format used for installing Android apps and contains the necessary components for app installation, including code, resources and app information.
Raaj, the CEO of tech marketing agency Techmonquay, said developers might choose to release an app initially as an APK because integration into the official app stores can be time-consuming.
Taking the APK route allows developers to gather user feedback, especially about issues like crashes, and make necessary fixes, he said.
“But launching the app on their website first may also be a strategic marketing move.
“This approach can help the app gain initial momentum, and by the time it is available on the Play Store, could attract even more downloads,” he said. - FMT
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.