Skip to main content
Information Security

Questions tagged [mobile-app]

Ask Question

The tag has no summary.

35 questions
Newest Active Bountied Unanswered
1 vote
2 answers
171 views

I’m trying to understand a PCI DSS SAQ A requirement that says: "All elements of the payment page(s)/form(s) delivered to the customer’s browser originate only and directly from a PCI DSS ...
Lachgar Nour Eddine's user avatar
  • 11
0 votes
1 answer
855 views

The Guardian says: Many tech experts also argue that apps are generally more secure than websites and allow banks and others to carry out sophisticated ID verification using face, voice and ...
User65535's user avatar
  • 447
6 votes
4 answers
3k views

I'm in a country where WhatsApp is "default" messaging app. I am thinking about deleting my WhatsApp account completely and sticking to the cell calls and SMS. I, of course, understand that ...
Zaza's user avatar
  • 61
0 votes
1 answer
201 views

I have an Android application distributed to my users through an .apk file. That app collects some data, and my goal is to upload that data to a cloud service, like BigQuery. To achieve this, I am ...
Jorge's user avatar
  • 1
1 vote
1 answer
529 views

I am working on security testing of an android application. There is a root detection in the Android application. objection, frida etc. It is possible to bypass this with ways. My main question is: ...
Exnovan's user avatar
  • 35
1 vote
0 answers
207 views

I have been getting random SOS countdowns triggered on my phone. Every time this happens, a pop-up appears telling me that unknown numbers have been temporarily unblocked. The most recent instance was ...
Miles's user avatar
  • 111
2 votes
0 answers
261 views

In my Unity app in C# I am using a 3rd party script which allows me store and retrieve data using iOS keychain. The stored data is a private user generated key which is used to encrypt data before ...
Ando's user avatar
  • 133
1 vote
0 answers
236 views

it is my first time with MobSF and Android APK assessment. I have found something while testing a specific APK and I am trying to understand the concept behind it: Under HARDCODED_SECRETS in MobSF, ...
Mr John's user avatar
  • 11
0 votes
1 answer
406 views

I am increasingly buying IoT aka smart devices for my household. All these devices need to be connected to WLAN and proprietary app (via bluetooth on iPhone). I do this initial step, but then block ...
Sybil's user avatar
  • 1,521
2 votes
1 answer
114 views

This is a little bit crazy. A long time ago, I created a Spotify account using Facebook credentials. A few years ago, I stopped my premium subscription, deleted Spotify from all devices and didn't ...
Ghassan Karwchan's user avatar
  • 389
0 votes
1 answer
234 views

I believe the title says it all. As an example, let's say I use the Brave browser on a phone. From my understanding, all legitimate apps or computer software that connect to the Internet have some ...
Kyrill's user avatar
  • 1
1 vote
1 answer
168 views

I am trying to reason about how native apps can avoid the problems web apps have in dealing with the "Browser Cryptography Chicken and Egg" problem, which has been discussed numerous times ...
tyhdev's user avatar
  • 13
0 votes
0 answers
161 views

I'm working on a mobile application, using django rest-framework as backend, and I'd like to archive the maximum security possible. Now when the user log-in with email and password I generate a token, ...
Paul Rock's user avatar
  • 111
0 votes
2 answers
375 views

I have seen some similar questions a few years old and I am not sure if there are any new changing views on this. I see that this flow is not recommended for mobile native apps. What are the practical ...
jhurtas's user avatar
  • 111
3 votes
0 answers
416 views

I decided to implement "forgotten password" functionality, without having to create a website just for that. The usual workflow that I've seen for any app is: User requests password reset ...
Varin's user avatar
  • 131

15 30 50 per page
1
2 3