Android Tapjacking Vulnerability
Benjamin Lim
TL;DR
This paper analyzes the tapjacking vulnerability in Android, detailing its attack steps, payload options, feasibility, and mitigation strategies to inform security improvements.
Contribution
It provides a detailed breakdown of the tapjacking attack process and explores potential payloads and defenses, offering a comprehensive understanding of this Android vulnerability.
Findings
Tapjacking can be effectively exploited on Android devices.
Various payload options increase attack versatility.
Mitigation strategies can reduce tapjacking risks.
Abstract
Android is an open source mobile operating system that is developed mainly by Google. It is used on a significant portion of mobile devices worldwide. In this paper, I will be looking at an attack commonly known as tapjacking. I will be taking the attack apart and walking through each individual step required to implement the attack. I will then explore the various payload options available to an attacker. Lastly, I will touch on the feasibility of the attack as well as mitigation strategies.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsAdvanced Malware Detection Techniques · Digital and Cyber Forensics · User Authentication and Security Systems