Android WebView: Are Secure Coding Practices Being Followed?

WebViews are very common on the Android applications. There are clear WebView security best practices, but are they being implemented? With our previous blog post in mind, Android WebView: Secure Coding Practices, we wanted to understand how secur… Continue reading Android WebView: Are Secure Coding Practices Being Followed?

A message display «Apple Security – Virus detected on your phone» in WebView

I just try to validate something and need an opinion. We have a website where users can manage his events, and to provide a mobile version, our customer do business with another company, who provide an app (iOS) to load our s… Continue reading A message display «Apple Security – Virus detected on your phone» in WebView

HTTP security headers for native and webview based mobile applications

OWASP Security Headers Project recommends the following security headers for web applications. Out of the following which headers are relevant to mobile applications?

HTTP Strict Transport Security (HSTS)
Public Key Pinning … Continue reading HTTP security headers for native and webview based mobile applications

HTTP security headers for native and webview based mobile applications

OWASP Security Headers Project recommends the following security headers for web applications. Out of the following which headers are relevant to mobile applications?

HTTP Strict Transport Security (HSTS)
Public Key Pinning … Continue reading HTTP security headers for native and webview based mobile applications

Premium SMS Malware ‘ExpensiveWall’ Infects Millions of Android Devices

Google has ejected 50 apps from its Google Play store that were harboring mobile malware dubbed ExpensiveWall. Continue reading Premium SMS Malware ‘ExpensiveWall’ Infects Millions of Android Devices