News

Ars Technica11y
E-Z-2-Use attack code exploits critical bug in majority of Android phones
Recently-released attack code exploiting a ... if you don't believe me." The WebView vulnerability allows attackers to inject malicious JavaScript into the Android browser and, in some cases ...
Bleeping Computer1y
AutoSpill attack steals credentials from Android password managers
Security researchers developed a new attack ... managers for Android are vulnerable to AutoSpill, even if there is no JavaScript injection. Android apps often use WebView controls to render ...
Computing1y
Android password managers vulnerable to 'AutoSpill' attack, researchers warn
Researchers have developed a new attack named "AutoSpill," affecting ... The AutoSpill vulnerability leverages Android's WebView framework, a technology that renders web content, including login ...