web browser

Your mobile device's web browser is highly vulnerable to attack

Sunday, December 09, 2012 by: David Gutierrez, staff writer
Tags: mobile devices, web browser, hack attack

eTrust Pro Certified

Most Viewed Articles
Popular on Facebook
CDC issues flu vaccine apology: this year's vaccine doesn't work!
Biologist explains how marijuana causes tumor cells to commit suicide
Depopulation test run? 75% of children who received vaccines in Mexican town now dead or hospitalized
Companies begin planting microchips under employees' skin
BAM! Chipotle goes 100% non-GMO; flatly rejecting the biotech industry and its toxic food ingredients
U2's Bono partners with Monsanto to destroy African agriculture with GMOs
NJ cops bust teenagers shoveling snow without a permit
Russia throws down the gauntlet: energy supply to Europe cut off; petrodollar abandoned as currency war escalates
McDonald's in global profit free fall as people everywhere increasingly reject chemically-altered toxic fast food
Chemotherapy kills cancer patients faster than no treatment at all
March Against Monsanto explodes globally... World citizens stage massive protests across 38 countries, 428 cities... mainstream media pretends it never happened
Why flu shots are the greatest medical fraud in history
600 strains of an aerosolized thought control vaccine already tested on humans; deployed via air, food and water
Italian court rules mercury and aluminum in vaccines cause autism: US media continues total blackout of medical truth
Flu vaccine kills 13 in Italy; death toll rises
The 21 curious questions we're never allowed to ask about vaccines
Vicious attack on Dr. Oz actually waged by biotech mafia; plot to destroy Oz launched after episode on glyphosate toxicity went viral
Whooping cough outbreak at Massachusetts high school affected only vaccinated students

Delicious
(NaturalNews) The web browsers on mobile devices such as cell phones and tablets are so unsafe that not even a team of cyber security experts was able to tell whether they were visiting a legitimate site or predatory one, in a study conducted by researchers from the Georgia Institute of Technology and presented at the 2012 Information Security Conference in Passau, Germany.

The study focused on the presence or absence of tiny graphic icons that typically appear in the URL field ("address bar") of the browser window. Known as either secure sockets layer (SSL) or transport layer security (TLS) indicators, these icons are used to assure web users that they are actually viewing the site that they meant to visit, and that their connection is secure.

The majority of information transmitted over the Internet is sent in a non-secure format. Two common indicators that a site is secure - and therefore, safe for transmitting passwords or financial information - are a small "lock" icon in the address bar and the prefix https (rather than http) at the beginning of the URL.

"We found vulnerabilities in all 10 of the mobile browsers we tested, which together account for more than 90 percent of the mobile browsers in use today in the United States," researcher Patrick Traynor said. "The basic question we asked was, 'Does this browser provide enough information for even an information-security expert to determine security standing?' With all 10 of the leading browsers on the market today, the answer was no."

Not up to industry standards

Although the web browsers used on mobile devices do incorporate many of the same security and cryptographic tools as desktop browsers, the area of graphical indicators is one in which they consistently fall short. While essentially all desktop browsers successfully meet the security standards set by the World Wide Web Consortium (W3C), Traynor said, mobile browsers either follow the guidelines inconsistently or disregard them altogether. This is a serious problem, because it means that users of mobile web browsers are significantly more vulnerable to cyber scams and attacks.

"Research has shown that mobile browser users are three times more likely to access phishing sites than users of desktop browsers," said lead author Chaitrali Amrutkar. "Is that all due to the lack of these SSL indicators? Probably not, but giving these tools a consistent and complete presence in mobile browsers would definitely help."

According to Traynor, the main reason that mobile browsers consistently fail to use graphic indicators is simply that the screens of many mobile devices are so limited in space.

"We understand the dilemma facing designers of mobile browsers, and it looks like all of them tried to do the best they could in balancing everything that has to fit within those small screens," Traynor said. "But the fact is that all of them ended up doing something just a little different -- and all inferior to desktop browsers. With a little coordination, we can do a better job and make mobile browsing a safer experience for all users."

Sources:

http://www.sciencedaily.com/releases/2012/12/121205112829.htm

Join over four million monthly readers. Your privacy is protected. Unsubscribe at any time.
comments powered by Disqus
Take Action: Support NaturalNews.com by linking back to this article from your website

Permalink to this article:

Embed article link: (copy HTML code below):

Reprinting this article:
Non-commercial use OK, cite NaturalNews.com with clickable link.

Follow Natural News on Facebook, Twitter, Google Plus, and Pinterest

Colloidal Silver

Advertise with NaturalNews...

Support NaturalNews Sponsors:

Advertise with NaturalNews...

GET SHOW DETAILS
+ a FREE GIFT

Sign up for the FREE Natural News Email Newsletter

Receive breaking news on GMOs, vaccines, fluoride, radiation protection, natural cures, food safety alerts and interviews with the world's top experts on natural health and more.

Join over 7 million monthly readers of NaturalNews.com, the internet's No. 1 natural health news site. (Source: Alexa.com)

Your email address *

Please enter the code you see above*

No Thanks

Already have it and love it!

Natural News supports and helps fund these organizations:

* Required. Once you click submit, we will send you an email asking you to confirm your free registration. Your privacy is assured and your information is kept confidential. You may unsubscribe at anytime.