News

Ars Technica11y
E-Z-2-Use attack code exploits critical bug in majority of Android phones
Recently-released attack code exploiting a ... if you don't believe me." The WebView vulnerability allows attackers to inject malicious JavaScript into the Android browser and, in some cases ...
Bleeping Computer1y
AutoSpill attack steals credentials from Android password managers
Security researchers developed a new attack ... managers for Android are vulnerable to AutoSpill, even if there is no JavaScript injection. Android apps often use WebView controls to render ...
TechRepublic4y
Why it’s time the Android developers rethink WebView
It turns out the issue was Android System WebView ... of native app code and HTML/JavaScript makes it easier on developers, it exposes the users by creating a larger attack surface for the ...
Computing1y
Android password managers vulnerable to 'AutoSpill' attack, researchers warn
Researchers have developed a new attack named "AutoSpill," affecting ... The AutoSpill vulnerability leverages Android's WebView framework, a technology that renders web content, including login ...