Checkmarx Named a Leader in Gartner Magic Quadrant for Application Security Testing

Tag: WebView

Android WebView: Are Secure Coding Practices Being Followed?

Android WebView: Are Secure Coding Practices Being Followed?

WebViews are very common on the Android applications. There are clear WebView security best practices, but are they being implemented? With our previous blog post in mind, Android WebView: Secure Coding Practices, we wanted to understand how security best practices in WebViews are being implemented in the wild. Are the apps with WebViews, currently available on

Read More ›

The Top 5 Exfiltration Attacks on WebViews

The Top 5 Exfiltration Attacks on WebViews

WebViews are a huge advantage when it comes to portability. But at what cost? By allowing Web content to interact with native functions, a window of attack possibilities opens. Old versions of Android (until API 17) allowed Remote Code Execution when an attacker was able to abuse a JavaScript Interface. Although this vulnerability was fixed in

Read More ›

Android WebView: Secure Coding Practices

Nowadays, there is no doubt that mobile applications have changed the world in a big way. Just look at the interaction habits, for example the way people socialize as individuals or in a group has changed as what was once far away is now at our fingertips. This is part one of a four-part series. Click

Read More ›

Jump to Category