webview – Page 2 – WindowsTechs.com

Android WebView: Are Secure Coding Practices Being Followed?

Posted on December 20, 2018 by João Morais

WebViews are very common on the Android applications. There are clear WebView security best practices, but are they being implemented? With our previous blog post in mind, Android WebView: Secure Coding Practices, we wanted to understand how secur… Continue reading Android WebView: Are Secure Coding Practices Being Followed?→

Why does my Cordova app contain an SQLite file with credit card tables?

Posted on February 10, 2018 by Elo

We have created a mobile app that includes a view for payment with credit cards. We have used Cordova so we can pusblish our app for Android and iOS. During some tests an SQLite file was found on /data/data/[package]/app_webv… Continue reading Why does my Cordova app contain an SQLite file with credit card tables?→

The Top 5 Exfiltration Attacks on WebViews

Posted on January 22, 2018 by Erez Yalon

This is part three of a three-part series. Click for part 1 and part 2. WebViews are a huge advantage when […]
The post The Top 5 Exfiltration Attacks on WebViews appeared first on Checkmarx.
The post The Top 5 Exfiltration… Continue reading The Top 5 Exfiltration Attacks on WebViews→

JavaScript Attacks in WebViews

Posted on December 7, 2017 by Erez Yalon

JavaScript is widely used due to its outstanding functionality. Its presence in a website can solve many problems, however it […]
The post JavaScript Attacks in WebViews appeared first on Checkmarx.
The post JavaScript Attacks in WebViews appeare… Continue reading JavaScript Attacks in WebViews→

A message display «Apple Security – Virus detected on your phone» in WebView

Posted on October 26, 2017 by Jonathan Anctil

I just try to validate something and need an opinion. We have a website where users can manage his events, and to provide a mobile version, our customer do business with another company, who provide an app (iOS) to load our s… Continue reading A message display «Apple Security – Virus detected on your phone» in WebView→

HTTP security headers for native and webview based mobile applications

Posted on September 24, 2017 by Shiv Sahni

OWASP Security Headers Project recommends the following security headers for web applications. Out of the following which headers are relevant to mobile applications?

HTTP Strict Transport Security (HSTS)
Public Key Pinning … Continue reading HTTP security headers for native and webview based mobile applications→

HTTP security headers for native and webview based mobile applications

Posted on September 24, 2017 by Shiv Sahni

OWASP Security Headers Project recommends the following security headers for web applications. Out of the following which headers are relevant to mobile applications?

HTTP Strict Transport Security (HSTS)
Public Key Pinning … Continue reading HTTP security headers for native and webview based mobile applications→

Premium SMS Malware ‘ExpensiveWall’ Infects Millions of Android Devices

Posted on September 14, 2017 by Tom Spring

Google has ejected 50 apps from its Google Play store that were harboring mobile malware dubbed ExpensiveWall. Continue reading Premium SMS Malware ‘ExpensiveWall’ Infects Millions of Android Devices→

Calling JavaScript interface with sensitive data in WebView

Posted on April 5, 2017 by DanielE

Let’s assume I have developed a mobile application running on Android (or any other operating system) which opens a WebView and loads (trusted) content from my server to display it in the WebView. The content contains a JavaS… Continue reading Calling JavaScript interface with sensitive data in WebView→