National Institute of Standards and Technology is developing guidance for how to test third-party mobile apps. NIST is seeking comments from stakeholders on the draft guidance before issuing a final version of the publication. The guide’s appendix identifies and defines the types of vulnerabilities specific to applications running on devices using Android and iOS operating systems. Users download many apps through online stores, such as the Apple App Store for iOS and the Play Store for Android devices, either by paying small fees or for free. To obtain apps for free, users generally agree to accept advertisements or surrender personal information.”]
Source: https://www.cuinfosecurity.com/how-to-vet-third-party-mobile-apps-a-7224