Phishing environments, techniques, and countermeasures: A survey
Phishing has become an increasing threat in online space, largely driven by the evolving
web, mobile, and social networking technologies. Previous phishing taxonomies have …
web, mobile, and social networking technologies. Previous phishing taxonomies have …
Toward engineering a secure android ecosystem: A survey of existing techniques
The openness and extensibility of Android have made it a popular platform for mobile
devices and a strong candidate to drive the Internet-of-Things. Unfortunately, these …
devices and a strong candidate to drive the Internet-of-Things. Unfortunately, these …
Identity confusion in {WebView-based} mobile app-in-app ecosystems
Mobile applications (apps) often delegate their own functions to other parties, which makes
them become a super ecosystem hosting these parties. Therefore, such mobile apps are …
them become a super ecosystem hosting these parties. Therefore, such mobile apps are …
What the app is that? deception and countermeasures in the android user interface
Mobile applications are part of the everyday lives of billions of people, who often trust them
with sensitive information. These users identify the currently focused app solely by its visual …
with sensitive information. These users identify the currently focused app solely by its visual …
Unauthorized origin crossing on mobile platforms: Threats and mitigation
With the progress in mobile computing, web services are increasingly delivered to their
users through mobile apps, instead of web browsers. However, unlike the browser, which …
users through mobile apps, instead of web browsers. However, unlike the browser, which …
Securing embedded user interfaces: Android and beyond
Web and smartphone applications commonly embed third-party user interfaces like
advertisements and social media widgets. However, this capability comes with security …
advertisements and social media widgets. However, this capability comes with security …
Aframe: Isolating advertisements from mobile applications in android
Android uses a permission-based security model to restrict applications from accessing
private data and privileged resources. However, the permissions are assigned at the …
private data and privileged resources. However, the permissions are assigned at the …
Understanding and detecting overlay-based android malware at market scales
As a key UI feature of Android, overlay enables one app to draw over other apps by creating
an extra View layer on top of the host View. While greatly facilitating user interactions with …
an extra View layer on top of the host View. While greatly facilitating user interactions with …
Vulnerabilities in Android webview objects: Still not the end!
WebView objects allow Android apps to render web content in the app context. More
specifically, in Android hybrid apps (ie, those having both Android code and web code) the …
specifically, in Android hybrid apps (ie, those having both Android code and web code) the …
Unleashing the walking dead: Understanding cross-app remote infections on mobile webviews
As a critical feature for enhancing user experience, cross-app URL invocation has been
reported to cause unauthorized execution of app components. Although protection has …
reported to cause unauthorized execution of app components. Although protection has …