Phishers Trick iOS, Android Users

This is a Telegram news story, published by Ars Technica, that relates primarily to Android news.

Telegram news

For more Telegram news, you can click here:

more Telegram news

News about operating systems

For more operating systems news, you can click here:

more operating systems news

Ars Technica news

For more news from Ars Technica, you can click here:

more news from Ars Technica

About the Otherweb

Otherweb, Inc is a public benefit corporation, dedicated to improving the quality of news people consume. We are non-partisan, junk-free, and ad-free. We use artificial intelligence (AI) to remove junk from your news feed, and allow you to select the best tech news, business news, entertainment news, and much more. If you like this article about operating systems, you might also like this article about

malicious apps

. We are dedicated to bringing you the highest-quality news, junk-free and ad-free, about your favorite topics. Please come every day to read the latest legitimate apps news, malicious app steals account credentials news, news about operating systems, and other high-quality news about any topic that interests you. We are working hard to create the best news aggregator on the web, and to put you in control of your news feed - whether you choose to read the latest news through our website, our news app, or our daily newsletter - all free!

malicious app

Ars Technica

•

Novel technique allows malicious apps to escape iOS and Android guardrails

Summary

Nutrition label

69% Informative

Phishers are using a novel technique to trick iOS and Android users into installing malicious apps that bypass safety guardrails built by both Apple and Google to prevent unauthorized apps.

The novel method involves enticing targets to install a special type of app known as a Progressive Web App .

Once installed, the malicious app steals account credentials and sends them to the attacker in real time over Telegram .

VR Score

Informative language

Neutral language

Article tone

semi-formal

Language

English

Language complexity

Offensive language

not offensive

Hate speech

not hateful

Attention-grabbing headline

not detected

Known propaganda techniques

not detected

Time-value

medium-lived

External references

https://cdn.arstechnica.net/wp-content/uploads/2024/08/figure-7-comparison-between-an-installed-phishing-webapk-left-and-real-banking-app-right.png https://cdn.arstechnica.net/wp-content/uploads/2024/08/figure-5-installed-phishing-pwa-left-and-real-banking-app-right.png https://www.welivesecurity.com/en/eset-research/be-careful-what-you-pwish-for-phishing-in-pwa-applications/https://web.dev/articles/webapks https://en.wikipedia.org/wiki/Progressive_web_app

Source diversity

cdn.arstechnica.net www.welivesecurity.com web.dev en.wikipedia.org

Affiliate links

no affiliate links

Read full article