Mobile phishing attack for Android platform
— University of Strathclyde Skip to main navigation Skip to search Skip to main content University of Strathclyde Home Help & FAQ Home Profiles Research Units Research output Projects Datasets Equipment Student theses Impacts Prizes Activities Search by expertise, name or affiliation Mobile phishing attack for Android platform Nour Abura'Ed, Hadi Otrok, Rabeb Mizouni, Jamal Bentahar Electronic And Electrical Engineering Research output: Chapter in Book/Report/Conference proceeding › Conference contribution book 9 Citations (Scopus) Overview Fingerprint Abstract In this paper, we address the problem of mobile phishing via the implementation of a Trojan that commits phishing through the mobile's pre-installed applications, which are naturally trusted. It utilizes task interception along with lack of identity indicators, and it overrides the default behavior of some functions to succeed with the attack. We also study the impact of this Trojan on the device's performance. Finally, we propose some security enhancements that do not rely on the human factor, which are categorized as Operating System (OS) Level solutions, and Secure Socket Layer (SSL) solutions. Original language English Title of host publication 10th International Conference on Innovations in Information Technology, IIT 2014 Pages 18-23 Number of pages 6 ISBN (Electronic) 9781479972128 DOIs https://doi.org/10.1109/INNOVATIONS.2014.6987555 Publication status Published - 16 Dec 2014 Event 2014 10th International Conference on Innovations in Information Technology, IIT 2014 - Abu Dhabi, Al-Ain, United Arab Emirates Duration: 9 Nov 2014 → 11 Nov 2014 Publication series Name 2014 10th International Conference on Innovations in Information Technology, IIT 2014 Conference Conference 2014 10th International Conference on Innovations in Information Technology, IIT 2014 Country/Territory United Arab Emirates City Abu Dhabi, Al-Ain Period 9/11/14 → 11/11/14 Keywords Android identity indicator mobile phishing SSL task interception Access to Document 10.1109/INNOVATIONS.2014.6987555 Other files and links Link to publication in Scopus Cite this APA Author BIBTEX Harvard Standard RIS Vancouver Abura'Ed, N., Otrok, H., Mizouni, R., & Bentahar, J. (2014). Mobile phishing attack for Android platform. In 10th International Conference on Innovations in Information Technology, IIT 2014 (pp. 18-23). [6987555] (2014 10th International Conference on Innovations in Information Technology, IIT 2014). https://doi.org/10.1109/INNOVATIONS.2014.6987555 Abura'Ed, Nour ; Otrok, Hadi ; Mizouni, Rabeb ; Bentahar, Jamal. / Mobile phishing attack for Android platform. 10th International Conference on Innovations in Information Technology, IIT 2014. 2014. pp. 18-23 (2014 10th International Conference on Innovations in Information Technology, IIT 2014). @inproceedings{e292702dabbc41a1856fca9c52fa2d35, title = "Mobile phishing attack for Android platform", abstract = "In this paper, we address the problem of mobile phishing via the implementation of a Trojan that commits phishing through the mobile's pre-installed applications, which are naturally trusted. It utilizes task interception along with lack of identity indicators, and it overrides the default behavior of some functions to succeed with the attack. We also study the impact of this Trojan on the device's performance. Finally, we propose some security enhancements that do not rely on the human factor, which are categorized as Operating System (OS) Level solutions, and Secure Socket Layer (SSL) solutions.", keywords = "Android, identity indicator, mobile phishing, SSL, task interception", author = "Nour Abura'Ed and Hadi Otrok and Rabeb Mizouni and Jamal Bentahar", year = "2014", month = dec, day = "16", doi = "10.1109/INNOVATIONS.2014.6987555", language = "English", series = "2014 10th International Conference on Innovations in Information Technology, IIT 2014", pages = "18--23", booktitle = "10th International Conference on Innovations in Information Technology, IIT 2014", note = "2014 10th International Conference on Innovations in Information Technology, IIT 2014 ; Conference date: 09-11-2014 Through 11-11-2014", } Abura'Ed, N, Otrok, H, Mizouni, R & Bentahar, J 2014, Mobile phishing attack for Android platform. in 10th International Conference on Innovations in Information Technology, IIT 2014., 6987555, 2014 10th International Conference on Innovations in Information Technology, IIT 2014, pp. 18-23, 2014 10th International Conference on Innovations in Information Technology, IIT 2014, Abu Dhabi, Al-Ain, United Arab Emirates, 9/11/14. https://doi.org/10.1109/INNOVATIONS.2014.6987555 Mobile phishing attack for Android platform. / Abura'Ed, Nour; Otrok, Hadi; Mizouni, Rabeb; Bentahar, Jamal. 10th International Conference on Innovations in Information Technology, IIT 2014. 2014. p. 18-23 6987555 (2014 10th International Conference on Innovations in Information Technology, IIT 2014). Research output: Chapter in Book/Report/Conference proceeding › Conference contribution book TY - GEN T1 - Mobile phishing attack for Android platform AU - Abura'Ed, Nour AU - Otrok, Hadi AU - Mizouni, Rabeb AU - Bentahar, Jamal PY - 2014/12/16 Y1 - 2014/12/16 N2 - In this paper, we address the problem of mobile phishing via the implementation of a Trojan that commits phishing through the mobile's pre-installed applications, which are naturally trusted. It utilizes task interception along with lack of identity indicators, and it overrides the default behavior of some functions to succeed with the attack. We also study the impact of this Trojan on the device's performance. Finally, we propose some security enhancements that do not rely on the human factor, which are categorized as Operating System (OS) Level solutions, and Secure Socket Layer (SSL) solutions. AB - In this paper, we address the problem of mobile phishing via the implementation of a Trojan that commits phishing through the mobile's pre-installed applications, which are naturally trusted. It utilizes task interception along with lack of identity indicators, and it overrides the default behavior of some functions to succeed with the attack. We also study the impact of this Trojan on the device's performance. Finally, we propose some security enhancements that do not rely on the human factor, which are categorized as Operating System (OS) Level solutions, and Secure Socket Layer (SSL) solutions. KW - Android KW - identity indicator KW - mobile phishing KW - SSL KW - task interception UR - http://www.scopus.com/inward/record.url?scp=84946234832&partnerID=8YFLogxK U2 - 10.1109/INNOVATIONS.2014.6987555 DO - 10.1109/INNOVATIONS.2014.6987555 M3 - Conference contribution book AN - SCOPUS:84946234832 T3 - 2014 10th International Conference on Innovations in Information Technology, IIT 2014 SP - 18 EP - 23 BT - 10th International Conference on Innovations in Information Technology, IIT 2014 T2 - 2014 10th International Conference on Innovations in Information Technology, IIT 2014 Y2 - 9 November 2014 through 11 November 2014 ER - Abura'Ed N, Otrok H, Mizouni R, Bentahar J. Mobile phishing attack for Android platform. In 10th International Conference on Innovations in Information Technology, IIT 2014. 2014. p. 18-23. 6987555. (2014 10th International Conference on Innovations in Information Technology, IIT 2014). https://doi.org/10.1109/INNOVATIONS.2014.6987555 Powered by Pure, Scopus & Elsevier Fingerprint Engine™ © 2022 Elsevier B.V. We use cookies to help provide and enhance our service and tailor content. By continuing you agree to the use of cookies Log in to Pure About web accessibility Contact us