web browser

Your mobile device's web browser is highly vulnerable to attack

Sunday, December 09, 2012 by: David Gutierrez, staff writer
Tags: mobile devices, web browser, hack attack

eTrust Pro Certified

Most Viewed Articles
Popular on Facebook
CDC issues flu vaccine apology: this year's vaccine doesn't work!
The five biggest lies about Ebola being pushed by government and mass media
Why does the CDC own a patent on Ebola 'invention?'
Ultraviolet light robot kills Ebola in two minutes; why doesn't every hospital have one of these?
Tetanus vaccines found spiked with sterilization chemical to carry out race-based genocide against Africans
Oregon man serving prison sentence for collecting rainwater on his own property
Russia taking McDonald's to court, threatens countrywide shutdown
Global warming data FAKED by government to fit climate change fictions
The best way to help your body protect itself against Ebola (or any virus or bacteria)
Healthy 12-year-old girl dies shortly after receiving HPV vaccine
Ebola outbreak may already be uncontrollable; Monsanto invests in Ebola treatment drug company as pandemic spreads
HOAX confirmed: Michelle Obama 'GMOs for children' campaign a parody of modern agricultural politics
Ben & Jerry's switches to non-GMO, Fair Trade ice cream ingredients
W.H.O. contradicts CDC, admits Ebola can spread via coughing, sneezing and by touching contaminated surfaces
BREAKING: CDC whistleblower confesses to MMR vaccine research fraud in historic public statement
Monsanto's seed imperialism halted in Canada thanks to massive protests
Cannabis dissolves cancerous tumor in young infant, deemed a 'miracle baby' by physician
Top ten things you need to do NOW to protect yourself from an uncontrolled Ebola outbreak

Delicious
(NaturalNews) The web browsers on mobile devices such as cell phones and tablets are so unsafe that not even a team of cyber security experts was able to tell whether they were visiting a legitimate site or predatory one, in a study conducted by researchers from the Georgia Institute of Technology and presented at the 2012 Information Security Conference in Passau, Germany.

The study focused on the presence or absence of tiny graphic icons that typically appear in the URL field ("address bar") of the browser window. Known as either secure sockets layer (SSL) or transport layer security (TLS) indicators, these icons are used to assure web users that they are actually viewing the site that they meant to visit, and that their connection is secure.

The majority of information transmitted over the Internet is sent in a non-secure format. Two common indicators that a site is secure - and therefore, safe for transmitting passwords or financial information - are a small "lock" icon in the address bar and the prefix https (rather than http) at the beginning of the URL.

"We found vulnerabilities in all 10 of the mobile browsers we tested, which together account for more than 90 percent of the mobile browsers in use today in the United States," researcher Patrick Traynor said. "The basic question we asked was, 'Does this browser provide enough information for even an information-security expert to determine security standing?' With all 10 of the leading browsers on the market today, the answer was no."

Not up to industry standards

Although the web browsers used on mobile devices do incorporate many of the same security and cryptographic tools as desktop browsers, the area of graphical indicators is one in which they consistently fall short. While essentially all desktop browsers successfully meet the security standards set by the World Wide Web Consortium (W3C), Traynor said, mobile browsers either follow the guidelines inconsistently or disregard them altogether. This is a serious problem, because it means that users of mobile web browsers are significantly more vulnerable to cyber scams and attacks.

"Research has shown that mobile browser users are three times more likely to access phishing sites than users of desktop browsers," said lead author Chaitrali Amrutkar. "Is that all due to the lack of these SSL indicators? Probably not, but giving these tools a consistent and complete presence in mobile browsers would definitely help."

According to Traynor, the main reason that mobile browsers consistently fail to use graphic indicators is simply that the screens of many mobile devices are so limited in space.

"We understand the dilemma facing designers of mobile browsers, and it looks like all of them tried to do the best they could in balancing everything that has to fit within those small screens," Traynor said. "But the fact is that all of them ended up doing something just a little different -- and all inferior to desktop browsers. With a little coordination, we can do a better job and make mobile browsing a safer experience for all users."

Sources:

http://www.sciencedaily.com/releases/2012/12/121205112829.htm

Join over four million monthly readers. Your privacy is protected. Unsubscribe at any time.
comments powered by Disqus
Take Action: Support NaturalNews.com by linking back to this article from your website

Permalink to this article:

Embed article link: (copy HTML code below):

Reprinting this article:
Non-commercial use OK, cite NaturalNews.com with clickable link.

Follow Natural News on Facebook, Twitter, Google Plus, and Pinterest

Colloidal Silver

Advertise with NaturalNews...

Support NaturalNews Sponsors:

Advertise with NaturalNews...

GET SHOW DETAILS
+ a FREE GIFT

Sign up for the FREE Natural News Email Newsletter

Receive breaking news on GMOs, vaccines, fluoride, radiation protection, natural cures, food safety alerts and interviews with the world's top experts on natural health and more.

Join over 7 million monthly readers of NaturalNews.com, the internet's No. 1 natural health news site. (Source: Alexa.com)

Your email address *

Please enter the code you see above*

No Thanks

Already have it and love it!

Natural News supports and helps fund these organizations:

* Required. Once you click submit, we will send you an email asking you to confirm your free registration. Your privacy is assured and your information is kept confidential. You may unsubscribe at anytime.