Comments on: Mobile applications may be dangerous https://javacard.vetilles.com/2010/05/24/mobile-applications-may-be-dangerous/ A weblog on Java Card, security, and other things personal Thu, 18 May 2017 07:26:32 +0000 hourly 1 https://wordpress.org/?v=4.0.32 By: Axelle https://javacard.vetilles.com/2010/05/24/mobile-applications-may-be-dangerous/#comment-4199 Tue, 22 Jun 2010 15:18:12 +0000 http://javacard.vetilles.com/?p=578#comment-4199 Sending SMS is VERY common.
But there are plenty of tricky schemes: transferring microfunds, dialing satellite premium numbers, eavesdropping conversations.

I would recommend you read some of these:
http://blog.fortinet.com/winceterdial-or-impunity-for-dialers/
http://www.fortiguard.com/papers/EICAR2010_Symbian-Yxes_Towards-Mobile-Botnets.pdf
http://www.fortiguard.com/papers/CONFIDENCE2010_FourHorsemen_Malware-on-Mobile-Phones_sildes.pdf

]]> By: Erwan David https://javacard.vetilles.com/2010/05/24/mobile-applications-may-be-dangerous/#comment-4186 Tue, 25 May 2010 10:43:36 +0000 http://javacard.vetilles.com/?p=578#comment-4186 I would think the billing link would work from a smartphone, making it send a SMS to a premium service.

From a PC, I do not see how it is possible.

]]> By: Kooorrg https://javacard.vetilles.com/2010/05/24/mobile-applications-may-be-dangerous/#comment-4185 Mon, 24 May 2010 23:17:17 +0000 http://javacard.vetilles.com/?p=578#comment-4185 From my point of view, the security implications of user interfaces is the most interesting research topic within the security industry and has been for the last few years. Sure, breaking 3DES or cloning Mifare is fun, but showing that most users do not even check whether a connection is secure or not when making a payment is much more relevant to the day-to-day activities of actual people.

]]>