|
|
|
|
|
|
by obisw4n
3959 days ago
|
|
|
Its funny the author mentions all the Google Play stuff about installing apps to users phones without them ever even knowing.. I actually found a company exploiting this in the wild using browser extensions, I wrote about it on this blog: http://extensiondefender.com/blog/ I'm not sure if the news I released had any effect, but they rapidly pivoted from a "desktop to mobile" ad network:
https://web.archive.org/web/20141209085229/http://vulcun.com... To some kind of e-Sports betting site:
https://vulcun.com/ Oddly enough I submitted a bug report to google telling them they should set a content-security-policy on play.google.com, and was basically told "wont-fix" so the vulnerability to play store still exists. |
|
|