Download Certificate- Most Promising Partner | ECIO | Most Admired Brand | Most Trusted Company

IIIT Hyderabad discovers Android apps may leak login information


By MYBRANDBOOK


IIIT Hyderabad discovers Android apps may leak login information

Researchers from IIIT Hyderabad discovered that Android apps that use autofill, reveal login information to the hosting app. On Android systems, a vulnerability caused by password managers' uneven processing of autofill requests might result in the theft of sensitive data. Both Android and password managers are at blame for the credential AutoSpill. 

 

The researchers lead by Prof. Ankit Gangwal from the Centre for Security, Theory and Algorithmic Research (CSTAR), IIIT-Hyderabad, found that every time an app loads a login page in WebView, an autofill request is generated from that WebView, the password managers and mobile operating system get disoriented about the target page for filling in the login credentials. 

 

While the expected behaviour is to populate the login page in WebView, the app loading the WebView could get access to the sensitive information. Prof. Gangwal said when a user tries to login to a music app on the mobile device via Google or Facebook, the music app will open Google or Facebook login page inside itself i.e., within the music app via the WebView 

 

“When the password manager is invoked to autofill the credentials, ideally it should autofill only into the Google or Facebook page that has been loaded. But we found that the autofill operation could accidentally expose the credentials to the base app, which in this case is your music app,” Prof. Gangwal explained. 

 

He emphasized that even without phishing, any malicious app that asks login via another site, can automatically get access to sensitive information. 

 

The findings, which will be presented at BlackHat Europe 2023 conference in December, concluded that both the Android system and the password managers are equally responsible for the credential AutoSpill. 
 BREAKING NEWS  BREAKING NEWS
Elon Musk Merges X with xAI in $33 Billion Stock Deal

Elon Musk Merges X with xAI in $33 Billion Stock Deal...

Elon Musk has made waves once again by merging X (formerly Twitter) with...

India Strengthens Electronics Supply Chain with ₹22,919 Cr Manu

India Strengthens Electronics Supply Chain with ₹22,919 Cr Manu...

The scheme aims to attract an investment of INR 59,350 Cr, resulting in pro...

Govt Drops Import Duty making EV Batteries cheaper

Govt Drops Import Duty making EV Batteries cheaper...

The Centre is taking measures to counter the impact of US President Donald ...

CERT-In’s New Advisory Unveils Hidden Cyber Threats

CERT-In’s New Advisory Unveils Hidden Cyber Threats...

The advisory highlights critical vulnerabilities in AI models, outlines mul...

 TECHNO TRENDS  Placeholder image
Legal Battle Over IT Act Intensifies Amid Musk’s India Plans

Legal Battle Over IT Act Intensifies Amid Musk’s India Plans

The outcome of the legal dispute between X Corp and the Indian government c...

Wipro inks 10-year deal with Phoenix Group's ReAssure UK worth

Wipro inks 10-year deal with Phoenix Group's ReAssure UK worth

The agreement, executed through Wipro and its 100% subsidiary,...

Centre announces that DPDP Rules nearing Finalisation by April

Centre announces that DPDP Rules nearing Finalisation by April

The government seeks to refine the rules for robust data protection, ensuri...

Home Ministry cracks down on PoS agents in digital arrest scam

Home Ministry cracks down on PoS agents in digital arrest scam

Digital arrest scams are a growing cybercrime where victims are coerced or ...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
For 2nd Time, Kaspersky announced Mumbai Indians’ Official C

For 2nd Time, Kaspersky announced Mumbai Indians’ Official C

Hrithik Roshan to endorse RuPay as Brand Ambassador

Hrithik Roshan to endorse RuPay as Brand Ambassador

RuPay is reportedly planning to feature Bollywood superstar Hrithik Rosha
India Today Group launches – AI Pop Stars

India Today Group launches – AI Pop Stars

Staying true to our industry leadership position in using cutting-edge tech
 MOVERS & SHAKERS  Placeholder image
Cloudflare Promotes Goran Risticevic as VP & MD for APAC

Cloudflare Promotes Goran Risticevic as VP & MD for APAC

TelioLabs ropes in Phaniraj V A as the Group CEO

TelioLabs ropes in Phaniraj V A as the Group CEO

TelioLabs has announced the onboarding of Phaniraj V A as its new Group CE
Wipro Appoints Amit Kumar as Managing Partner and Global Head

Wipro Appoints Amit Kumar as Managing Partner and Global Head

Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO), a leading technology s
 OPEN YOUR EYES  Placeholder image

No road block for the cyber espionage cases
Tools and technologies are being used for Remote Work and Collaboration Teams
The rising risk of insider threats in the remote workforce
India Celebrates MSME Day, Focusing Business Continuity During COVID-19 Outbreak
It is time to protect your critical business priorities from attackers
 INTERVIEWS  Placeholder image
Bolstering its commitment to help build a truly self-reliant B

Bolstering its commitment to help build a truly self-reliant B

Acer addresses evolving customer needs by consistently pushing

Acer addresses evolving customer needs by consistently pushing

Acer offers a comprehensive range of products under one roof, including des
Autodesk continually pushing the boundaries in the Design and

Autodesk continually pushing the boundaries in the Design and

Autodesk’s vision is of a better world designed and made for all. It inte
 HOT PICK  Placeholder image
ASUS ExpertCenter P500 Mini Tower Desktop PC's launched in Ind

ASUS ExpertCenter P500 Mini Tower Desktop PC's launched in Ind

MSI Announces the availability of RTX 50 series of laptops in

MSI Announces the availability of RTX 50 series of laptops in

MSI, the innovative computing manufacturer in gaming, creator
Nothing Phone (3a) goes on sale today, starting at Rs 19,999

Nothing Phone (3a) goes on sale today, starting at Rs 19,999

The phone was launched on March 4, featuring a 50MP main, ultra-wide, and t
 MAKE IN INDIA BRANDS   Placeholder image
MATRIX COMSEC PVT. LTD.

MATRIX COMSEC PVT. LTD.


SAMRIDDHI AUTOMATIONS PVT. LTD.

SAMRIDDHI AUTOMATIONS PVT. LTD.


STERLITE TECHNOLOGIES LTD.

STERLITE TECHNOLOGIES LTD.


NETWEB TECHNOLOGIES INDIA LTD.

NETWEB TECHNOLOGIES INDIA LTD.


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

PRIORITIZING APPROPRIATE DATA MANAGEMENT AND ETHICAL AI IS THE NEED OF THE HOUR

For us, cultivating customer trust amidst for that...

AI AND DATA ANALYTICS REVOLUTIONIZING HEALTHCARE SERVICES

...

AI SYSTEMS ARE ENABLING A SEISMIC SHIFT IN THE WORLD OF CYBERSECURITY

AI’s analytical prowess enables it to analyze an...

 ICONS OF INDIA  Placeholder image

ICONS OF INDIA : SANDIP PATEL

Sandip Patel is the Managing Director for IBM India & South Asia regio...

Icons Of India : AALOK KUMAR

Aalok Kumar is celebrated as a global leader and recipient of the Peop...

Icons Of India : PRATIVA MOHAPATRA

Prativa is a transformational leader with an incredible breadth of exp...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Rashi Peripherals is Redefining ICT Distribution with Technology

Rashi Peripherals is India’s fourth largest ICT distribution company in term...

"WE BELIEVE IN FOSTERING COLLECTIVE GROWTH"

These insights inform strategic adjustments, improvements and ensuring communi...

Revolutionizing surveillance industry with innovative range of accessories

Adoption of digital technology is essential for real growth and without this s...

 PSU  Placeholder image

DRDO - Defence Research and Development Organisation 

DRDO responsible for the development of technology for use by the mili...

HPCL - Hindustan Petroleum Corporation Ltd.  

HPCL is an integrated oil and gas company involved in refining, market...

TCIL - Telecommunications Consultants India Limited  

TCIL is a government-owned engineering and consultancy company...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2024: DELL TECHNOLOGIES INC.

Dell Technologies has been at the forefront of developing edge computing solut...

Most Trusted Brands 2024: Apple India Pvt. Ltd.

five decades after its founding, Apple has redefined modern computing, emphasi...

Most Trusted Brands 2024: MICROSOFT CORPORATION

Microsoft Corporation has been at the forefront of technological innovation fo...

 Global Indian industry   Value-Added Distribution

Indian Tech Talent Excelling The Tech World - Steve Sanghi, Executive Chair, Microchip

Steve Sanghi, the Executive Chair of Microchip Technology, has been a ...

Indian Tech Talent Excelling The Tech World - Rajiv Ramaswami, President & CEO, Nutanix Technologies

Rajiv Ramaswami, President and CEO of Nutanix, brings over 30 years of...

Indian Tech Talent Excelling The Tech World - Shantanu Narayen, CEO- Adobe Systems Incorporated

Shantanu Narayen, CEO of Adobe Systems Incorporated, is renowned for h...

 ITFORUM 2025  
 STARNITE AWARDS 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 IMAGE GALLERY   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
Brandbook Brandbook
 TECHNOLOGY DISRUPTION Placeholder image

Can eSIM protect SIM swap frauds in India?

Can eSIM protect SIM swap frauds in India?

ISB Executive Education collaborates with Eruditus to upskill professionals

ISB Executive Education collaborates with Eruditus to upskill professionals

NEC Utilizes Digital Technologies to Create Healthcare and Life Science Business

NEC Utilizes Digital Technologies to Create Healthcare and Life Science Business

Chief Minister of Kerala inaugurates Jio True 5G in Kochi City & Guruvayur temple

Chief Minister of Kerala inaugurates Jio True 5G in Kochi City & Guruvayur temple

 UNICORNS REVOLUTIONISING Placeholder image

Coforge Business Process Solutions Private Limited

Coforge Business Process Solutions Private Limited

Fashnear Technologies Private Limited

Fashnear Technologies Private Limited

Druva Inc.

Druva Inc.

InCred Financial Services Limited

InCred Financial Services Limited


Copyright www.mybrandbook.co.in @1999-2025 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
of images belongs to the respective copyright holders
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

EXPLORE THE NEW BRAND BOOK
CONTACT US

SUBSCRIBE NOW