An android-based trojan spyware to study the notificationlistener service vulnerability
Security attacks continue to emerge on daily basis due to the fast growth in the number of smart devices and mobile applications. Attacks take different malware forms such as Spyware and Trojan exploiting different operating system vulnerabilities, specially the well known vulnerable operating syste...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | , , , |
| Format: | article |
| Published: |
2016
|
| Online Access: | http://hdl.handle.net/10725/5362 http://dx.doi.org/10.1016/j.procs.2016.04.210 http://libraries.lau.edu.lb/research/laur/terms-of-use/articles.php http://www.sciencedirect.com/science/article/pii/S1877050916302435 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1864513465835585536 |
|---|---|
| author | Abualola, Huda |
| author2 | Alhawai, Hessa Kadadha, Maha Otrok, Hadi Mourad, Azzam |
| author2_role | author author author author |
| author_facet | Abualola, Huda Alhawai, Hessa Kadadha, Maha Otrok, Hadi Mourad, Azzam |
| author_role | author |
| dc.creator.none.fl_str_mv | Abualola, Huda Alhawai, Hessa Kadadha, Maha Otrok, Hadi Mourad, Azzam |
| dc.date.none.fl_str_mv | 2016 2017-03-14T07:32:53Z 2017-03-14T07:32:53Z 2017-03-14 |
| dc.identifier.none.fl_str_mv | 1877-0509 http://hdl.handle.net/10725/5362 http://dx.doi.org/10.1016/j.procs.2016.04.210 Abualola, H., Alhawai, H., Kadadha, M., Otrok, H., & Mourad, A. (2016). An Android-based Trojan Spyware to Study the NotificationListener Service Vulnerability. Procedia Computer Science, 83, 465-471. http://libraries.lau.edu.lb/research/laur/terms-of-use/articles.php http://www.sciencedirect.com/science/article/pii/S1877050916302435 |
| dc.language.none.fl_str_mv | en |
| dc.relation.none.fl_str_mv | Procedia Computer Science |
| dc.rights.*.fl_str_mv | info:eu-repo/semantics/openAccess |
| dc.title.none.fl_str_mv | An android-based trojan spyware to study the notificationlistener service vulnerability |
| dc.type.none.fl_str_mv | Article info:eu-repo/semantics/publishedVersion info:eu-repo/semantics/article |
| description | Security attacks continue to emerge on daily basis due to the fast growth in the number of smart devices and mobile applications. Attacks take different malware forms such as Spyware and Trojan exploiting different operating system vulnerabilities, specially the well known vulnerable operating system; Android OS. In this paper, we study the malicious use of the “NotificationListener” service in Android 4.3 and 5.0. A Trojan application, known as SMS backup, is developed to spy the notifications of other applications. Such an application requires only two permissions that include “Notification Access” and “Internet”. These permissions are used to extract and send user's messages of other applications to the attacker's email through Internet. Our malware is able to alter and/or delete the notification before being displayed. For experimental results, the malware was tested against notifications of WhatsApp, BBM, SMS, and Facebook messenger using different Android versions including Lollipop 5.0. Experiments show that our malware succeeded against all the tested applications running Android version 4.3. Moreover, BBM and SMS messages are still extractable in the newer version of Android (Lollipop 5.0). |
| eu_rights_str_mv | openAccess |
| format | article |
| id | LAURepo_235a4f9749a57e0d6c7f4c6330427d2b |
| identifier_str_mv | 1877-0509 Abualola, H., Alhawai, H., Kadadha, M., Otrok, H., & Mourad, A. (2016). An Android-based Trojan Spyware to Study the NotificationListener Service Vulnerability. Procedia Computer Science, 83, 465-471. |
| language_invalid_str_mv | en |
| network_acronym_str | LAURepo |
| network_name_str | Lebanese American University repository |
| oai_identifier_str | oai:laur.lau.edu.lb:10725/5362 |
| publishDate | 2016 |
| repository.mail.fl_str_mv | |
| repository.name.fl_str_mv | |
| repository_id_str | |
| spelling | An android-based trojan spyware to study the notificationlistener service vulnerabilityAbualola, HudaAlhawai, HessaKadadha, MahaOtrok, HadiMourad, AzzamSecurity attacks continue to emerge on daily basis due to the fast growth in the number of smart devices and mobile applications. Attacks take different malware forms such as Spyware and Trojan exploiting different operating system vulnerabilities, specially the well known vulnerable operating system; Android OS. In this paper, we study the malicious use of the “NotificationListener” service in Android 4.3 and 5.0. A Trojan application, known as SMS backup, is developed to spy the notifications of other applications. Such an application requires only two permissions that include “Notification Access” and “Internet”. These permissions are used to extract and send user's messages of other applications to the attacker's email through Internet. Our malware is able to alter and/or delete the notification before being displayed. For experimental results, the malware was tested against notifications of WhatsApp, BBM, SMS, and Facebook messenger using different Android versions including Lollipop 5.0. Experiments show that our malware succeeded against all the tested applications running Android version 4.3. Moreover, BBM and SMS messages are still extractable in the newer version of Android (Lollipop 5.0).PublishedN/A2017-03-14T07:32:53Z2017-03-14T07:32:53Z20162017-03-14Articleinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/article1877-0509http://hdl.handle.net/10725/5362http://dx.doi.org/10.1016/j.procs.2016.04.210Abualola, H., Alhawai, H., Kadadha, M., Otrok, H., & Mourad, A. (2016). An Android-based Trojan Spyware to Study the NotificationListener Service Vulnerability. Procedia Computer Science, 83, 465-471.http://libraries.lau.edu.lb/research/laur/terms-of-use/articles.phphttp://www.sciencedirect.com/science/article/pii/S1877050916302435enProcedia Computer Scienceinfo:eu-repo/semantics/openAccessoai:laur.lau.edu.lb:10725/53622021-03-19T10:00:54Z |
| spellingShingle | An android-based trojan spyware to study the notificationlistener service vulnerability Abualola, Huda |
| status_str | publishedVersion |
| title | An android-based trojan spyware to study the notificationlistener service vulnerability |
| title_full | An android-based trojan spyware to study the notificationlistener service vulnerability |
| title_fullStr | An android-based trojan spyware to study the notificationlistener service vulnerability |
| title_full_unstemmed | An android-based trojan spyware to study the notificationlistener service vulnerability |
| title_short | An android-based trojan spyware to study the notificationlistener service vulnerability |
| title_sort | An android-based trojan spyware to study the notificationlistener service vulnerability |
| url | http://hdl.handle.net/10725/5362 http://dx.doi.org/10.1016/j.procs.2016.04.210 http://libraries.lau.edu.lb/research/laur/terms-of-use/articles.php http://www.sciencedirect.com/science/article/pii/S1877050916302435 |