Download Certificate- CMOs | ECIO | Most Admired Brand | Most Trusted Company

IIIT Hyderabad discovers Android apps may leak login information


By MYBRANDBOOK


IIIT Hyderabad discovers Android apps may leak login information

Researchers from IIIT Hyderabad discovered that Android apps that use autofill, reveal login information to the hosting app. On Android systems, a vulnerability caused by password managers' uneven processing of autofill requests might result in the theft of sensitive data. Both Android and password managers are at blame for the credential AutoSpill. 

 

The researchers lead by Prof. Ankit Gangwal from the Centre for Security, Theory and Algorithmic Research (CSTAR), IIIT-Hyderabad, found that every time an app loads a login page in WebView, an autofill request is generated from that WebView, the password managers and mobile operating system get disoriented about the target page for filling in the login credentials. 

 

While the expected behaviour is to populate the login page in WebView, the app loading the WebView could get access to the sensitive information. Prof. Gangwal said when a user tries to login to a music app on the mobile device via Google or Facebook, the music app will open Google or Facebook login page inside itself i.e., within the music app via the WebView 

 

“When the password manager is invoked to autofill the credentials, ideally it should autofill only into the Google or Facebook page that has been loaded. But we found that the autofill operation could accidentally expose the credentials to the base app, which in this case is your music app,” Prof. Gangwal explained. 

 

He emphasized that even without phishing, any malicious app that asks login via another site, can automatically get access to sensitive information. 

 

The findings, which will be presented at BlackHat Europe 2023 conference in December, concluded that both the Android system and the password managers are equally responsible for the credential AutoSpill. 
 BREAKING NEWS  BREAKING NEWS
Telecom players request Government to address revenue sharing mod

Telecom players request Government to address revenue sharing mod...

Telecom operators Bharti Airtel, Reliance Jio and Vodafone Idea repres...

Dell Technologies and Alienware unveil the new Alienware x16 R2 i

Dell Technologies and Alienware unveil the new Alienware x16 R2 i...

Dell Technologies and Alienware have launched the new Alienware x16 R2 in...

BharatPe introduces BharatPe One, an all-in-one payment device

BharatPe introduces BharatPe One, an all-in-one payment device...

BharatPe introduced BharatPe One, a multipurpose payment device that combi...

RBI gives PayU permission to function as a payment aggregator

RBI gives PayU permission to function as a payment aggregator...

The Reserve Bank of India has given PayU permission in principle to fun...

 TECHNO TRENDS  Placeholder image
TAC Security becomes Cyber Security Assessor for the App Defen

TAC Security becomes Cyber Security Assessor for the App Defen

The cybersecurity company, TAC Security has been selected as a key Cyber ...

InterGlobe’s Rahul Bhatia and C.P. Gurnani together announce

InterGlobe’s Rahul Bhatia and C.P. Gurnani together announce

In a move that is set to transform the AI landscape, Rahul Bhatia, Group M...

Download masked Aadhaar to improve privacy

Download masked Aadhaar to improve privacy

Download a masked Aadhaar from UIDAI to improve privacy. Select masking w...

Sterlite Technologies' Rs 145 crore claim against BSNL rejecte

Sterlite Technologies' Rs 145 crore claim against BSNL rejecte

An arbitrator has rejected broadband technology company Sterlite Technolog...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

Salman Khan trolled for singing with B Praak at Anant Ambani's

Salman Khan trolled for singing with B Praak at Anant Ambani's

To celebrate Mukesh Ambani's youngest son Anant Ambani’s 29th birthday

Disney+ Hotstar wins the Best OTT Platform of the year

Disney+ Hotstar wins the Best OTT Platform of the year

Film Critics Guild and Group M Motion Entertainment, in collaboration with

 MOVERS & SHAKERS  Placeholder image
Nium Appoints Alexandra Johnson appoints as Chief Payments Off

Nium Appoints Alexandra Johnson appoints as Chief Payments Off

SISL elevates Ankita Wadhawan as CEO—End User Computing

SISL elevates Ankita Wadhawan as CEO—End User Computing

The IT service provider, SISL in a LinkedIn post announced the elevation

InfoVision appoints Radhika Venkatraman to its Advisory Board

InfoVision appoints Radhika Venkatraman to its Advisory Board

Global digital services company, InfoVision has announced the appointment
 OPEN YOUR EYES  Placeholder image

Digital Strategies Focuses On Technology To Improve Business Performance
How to secure confidential data while working remotely
Opportunities For Technological Disruption In Times Of Crisis
COVID-19 Brings Opportunity For Businesses To Tide Over The Current Crisis
Digital economy is at risk with the growing cyber attacks
 INTERVIEWS  Placeholder image
Autodesk investing in emerging Design & Make technologies to d

Autodesk investing in emerging Design & Make technologies to d

Elastic democratizing search with powerful AI and ML-enabled s

Elastic democratizing search with powerful AI and ML-enabled s

Elastic is always committed to staying ahead of the curve and constantly re
Making security more accessible, CP PLUS stands unrivaled as a

Making security more accessible, CP PLUS stands unrivaled as a

The topmost priority of CP Plus is to establish a dedicated R&D Hub in Indi
 HOT PICK  Placeholder image
COLORFUL rolls out an array of gaming laptops

COLORFUL rolls out an array of gaming laptops

Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies has launched the broadest portfolio of commercial AI lap
Canon India Introduces 4K Remote PTZ Camera Controller & 4K In

Canon India Introduces 4K Remote PTZ Camera Controller & 4K In

Canon India, a leading company in digital imaging solutions, further solidi
 MAKE IN INDIA BRANDS   Placeholder image
EXIDE INDUSTRIES LTD.  

EXIDE INDUSTRIES LTD.  


BEETEL TELETECH LTD.

BEETEL TELETECH LTD.


DELL TECHNOLOGIES INDIA PVT. LTD.  

DELL TECHNOLOGIES INDIA PVT. LTD.  


NUMERIC INDIA, A Group Brand Legrand

NUMERIC INDIA, A Group Brand Legrand


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

Securing and improving the security postures from leading security breaches

We are pioneers in cybersecurity with a track reco...

Technology has been at the forefront of evolution propelling to ease life

Apart from cost vs benefits analysis, we always lo...

Implementing effective technical goals for strategic growth

Start by setting clear goals and objectives for th...

 ICONS OF INDIA  Placeholder image

Technology Icons Of India 2023: C P Gurnani

CP Gurnani (popularly known as ‘CP’ within his peer group), is the...

Technology Icons Of India 2023: Rajendra Singh Pawar

Rajendra Singh Pawar is an entrepreneur and businessperson who founded...

Technology Icons Of India 2023: Gautam Adani

Gautam Adani is the Founder and the Chairman of the Adani Group, an In...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Inflow Technologies Embracing Futuristic Cutting-edge solutions for Unprecedented Growth

  As leading fastest growing IT distributor in India, Inflow Technologies is ...

Customer Satisfaction is Sound Solutions’ Foundation for Success and Resilience

India is a very big market with a variety of segments like SME, Corporate, Gov...

Symmetrix Empowering Collaboration between OEMs, Customers, and SMEs for Seamless Project Execution and Growth

A robust support system exists that fosters seamless communication and collabo...

 PSU  Placeholder image

ECIL continues to keep India ahead in the growth of Information Technology and Electronics  

ECIL played a very significant role in the training and growth of high...

STPI encouraging software exports from India  

Software Technology Parks of India (STPI) is an S&T organization under...

EESL encouraging e-mobility adoption across India  

Energy Efficiency Services Limited (EESL) is a Super Energy Service Co...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2023 : Google India Pvt. Ltd.     

Google is credited for electrifying the online world by creating the Web’s b...

Most Trusted Brands 2023 : Infosys Limited  

With 40+ years of service, Infosys enables clients with an AI-powered core, em...

Most Trusted Brands 2023 : IBM India Pvt. Ltd.

One of the world’s oldest and largest technology companies, IBM is credited ...

 Value-Added Distribution  Value-Added Distribution

INFLOW TECHNOLOGIES PVT. LTD.

Inflow Technologies is a niche player in the IT Infrastructure Distrib...

TEXONIC INSTRUMENTS

Texonic has carved a niche for itself in the Technology Distribution i...

R P TECH INDIA

R P Tech is recognized for its  diverse products portfolio, value-add...

 ITFORUM 2024  
 WIITF 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 EMINENT CIO's OF INDIA   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
 TECHNOLOGY DISRUPTION Placeholder image

Indian semiconductor Industry to reach $55 bn by 2026

Indian semiconductor Industry to reach $55 bn by 2026

Infobip to deploy region-locked EU data centre

Infobip to deploy region-locked EU data centre

IOCL selects Reliance Jio managed network services for its retail outlets

IOCL selects Reliance Jio managed network services for its retail outlets

Apollo Hospitals partners with Google Cloud to boost India’s healthcare ecosystem

Apollo Hospitals partners with Google Cloud to boost India’s healthcare ecosystem

 UNICORNS REVOLUTIONISING Placeholder image

MarketXpander Services Private Limited

MarketXpander Services Private Limited

CARS24 Services Private Limited

CARS24 Services Private Limited

Mensa Brand Technologies Private Limited

Mensa Brand Technologies Private Limited

Chargebee Technologies Private Limited

Chargebee Technologies Private Limited


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW