VPNs: they’re great, and you should have one in your toolbox!. VPN apps for your smartphone can be a great way to maintain your privacy when using your phone on public networks, and offer a host of other benefits.

However, new research from the CSIRO, in conjunction with the University of New South Wales and UC Berkeley has found that 38% of 283 VPN apps surveyed for Android (commonly found on the Google Play Store) were found to inject malware and malvertising into their services.

Even more staggeringly, 84% of the apps leaked user data, with a further 18% not encrypting user activity over their networks. Ironically, it seems the use of many of these apps can prove even less secure than browsing open public WiFi networks!

So, what does this mean for users?

While it’s not clear exactly which apps were the biggest offenders, there are some prudent steps you can take.

Firstly, realise that many VPN apps will make empty promises in regards to your security. Don’t simply trust the marketing taglines, popularity ratings and 5-star reviews on Google Play: pay attention to which permissions are being asked for when you look for a new VPN app.

According to the research, a common red flag of problematic apps included asking for access to contacts and text messages, as well as your device’s internal storage and files.

Don’t simply pick the first app to show up in your search results, either. Shop around and research your next VPN app: after all, you’re trusting it to keep you secure!