[Owasp-turkey] Android trojan steals keystrokes using phone movements

Musa Ulker musaulker at gmail.com
Wed Apr 25 18:25:37 UTC 2012

Computer scientists have devised an attack that logs phone numbers, Social
Security IDs, and personal identification numbers entered into smartphones
by monitoring the devices' integrated motion sensors.

TapLogger, as their proof-of-concept application for phones running
Google's Android operating system is called, masquerades as a benign game
that challenges the end user to identify identical icons from a collection
of similar-looking images. In the background, the trojan monitors readings
returned by the phone's built-in accelerometer, gyroscope, and orientation
sensors to infer phone numbers and other digits entered into the device.
This then surreptitiously uploads them to a computer under the control of
the attackers.

M.Musa Ülker
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-turkey/attachments/20120425/5d913546/attachment.html>

More information about the Owasp-turkey mailing list