Researchers from Columbia University developed a custom tool that analyzes Android apps for unsafe use of cryptographic code. The tool, CRYLOGGER, analyzes apps that break 26 basic cryptography rules. The research sheds new light on how easy it is for popular mobile apps to break basic security rules, researchers say. CRYlogger is meant to be an open-source and dynamic companion to CryptoGuard, which is available on GitHub. Researchers contacted the developers of 306 Android apps and libraries to disclose the vulnerabilities.
Source: https://threatpost.com/cryptobugs-found-in-numerous-google-play-store-apps/159013/