Hacker News new | ask | show | jobs
by 1024core 2631 days ago
> copy it to the clipboard and fill the form myself.

I'm not that familiar with mobile dev, but could a rogue app just sit in the background, making a copy of whatever's in the clipboard?
2 comments
yani 2631 days ago
If you have such an application installed... the system has already been compromised.
link
shawnz 2631 days ago
Yes, Keepass for example avoids this by pasting some of the characters with the clipboard and some of the characters by simulating keypresses. See: https://keepass.info/%0D/help/v2/autotype_obfuscation.html

Lastpass mitigates the issue somewhat by clearing the clipboard after a certain amount of time.

link