An official website of the European Union How do you know?      
European Commission logo
JRC Publications Repository Menu

In-Memory Credentials Robbery on Android Phones

cover
Mobile phones have almost replaced the work of traditional computers and people nowadays use them for both business and personal purposes, in a much more complex way than some years ago. However, the notion of “mobile phone” has not changed accordingly: the majority of the people consider this device as a phone without thinking the implications of their digital life when using it. In this paper we demonstrate how to steal user’s credentials and sensitive information in general from the memory of an Android device. We do so by using the findings of our previous work, named MobiLeak Project, and by exploiting vulnerabilities due to both the user behavior and the poor practices when developing mobile applications. Finally, and most importantly, we show that this attack is not noticed by the mobile phone user both in terms of visibility and mobile phone performance.
2014-08-07
IEEE
JRC83647
978-1-908320-22-3,   
http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=6751023,    http://ieeexplore.ieee.org/xpl/mostRecentIssue.jsp?punumber=6745499,    https://publications.jrc.ec.europa.eu/repository/handle/JRC83647,   
10.1109/WorldCIS.2013.6751023,   
NameCountryCityType
Datasets
IDTitlePublic URL
Dataset collections
IDAcronymTitlePublic URL
Scripts / source codes
DescriptionPublic URL
Additional supporting files
File nameDescriptionFile type 
Show metadata record  Copy citation url to clipboard  Download BibTeX
Items published in the JRC Publications Repository are protected by copyright, with all rights reserved, unless otherwise indicated. Additional information: https://ec.europa.eu/info/legal-notice_en#copyright-notice