New York: Using a new tool called PlayDrone, researchers at Columbia Engineering have discovered a crucial security problem in Google Play - the official Android app store where millions of Android users get their apps.

They found that developers often store their secret keys in their app's code, similar to usernames/passwords info.