Lookout provides the capability to grade applications based on the potential risk they may pose to an organization. This is designed to bring administrators insight into potential risk posed by the applications installed across your mobile fleet. Our static and dynamic analysis engines probe the applications’ code to identify all the capabilities, permissions, and more. While we summarize the findings in the app report, we also grade applications based on the capabilities of the app regarding data handling and permissions the app requests. App grades for risk exposure range from low to critical. Further, an app with malware presence has that added detail.

An application could be of low risk exposure but still contain malware. This means that it has somewhat limited capability but was built with a malicious intent. An application with low risk exposure, poses little or no potential risk, while an application with critical severity, may have access to more system information and data points, meaning it has a higher level of potential risk. See below for more information on those items that contribute to the risk exposure.

Be aware that app grading does not replace Lookout's protection policies which can identify malicious or dubious applications separately from the app grading exposure analysis. The Lookout app grading does not infer the app developer’s intent except for apps categorized as malware.