New Android Malware Detection: Centrality Analysis Explained #sciencefather

In this video, we uncover how hackers are using a technique called BadPack to embed malicious code in Android apps, posing a serious threat to your device's security. Learn how experts are employing centrality analysis to detect suspicious patterns within app connections, helping to keep your data safe. Stay informed with the latest updates as Google rolls out Android Safe Browsing, a feature designed to alert users about unsafe websites and apps. Don't miss out on these crucial insights to protect your Android device! #ScienceFather #ScientificResearch #ScienceConferences #GlobalScienceEvents #InnovativeResearch #ScienceAwards #AndroidSecurity #BadPack #CyberSecurity #AndroidSafeBrowsing #TechNews #AppSecurity#Researcher #AcademicResearch #PhDLife #Postdoc#ResearchCommunity #scienceresearch

International Young Scientist Awards 

 Website link: youngscientistawards.com 

Nomination Link: https://youngscientistawards.com/award-nomination/?ecategory=Awards&rcategory=Awardee 

 Contact Us: [email protected] 

 Social Media: 

Twitter : https://twitter.com/youngsc06963908 

 Linkedin- : https://www.linkedin.com/in/shravya-r... 

 Pinterest : https://in.pinterest.com/youngscienti... 

 Blog : https://youngscientistaward.blogspot.... 

 Tumblr : https://www.tumblr.com/blog/shravya9

APKDeepLens: Scan Android Apps (APK files) for Security Vulnerabilities | #AndroidSecurity #APK #MobileSecurity #Android

What is Certificate Pinning and how its work in Android .

We are living in a world, where every tech product considered itself a Mobile product and communication between mobile and Server should be secure ,there are many ways to provide a secure channel between Mobile and server but still the attacker want to be one step ahead . So to provide security a double check mechanism was introduced named Certificate pinning.

Most of us think that the communication on HTTS provide the secure channel to communicate between mobile and server but fact is different from it.

Mobile Apps does not have any certificate it just rely on the certificate issue by server  now a third party comes in the picture name man in middle(intruder) and it generates a fake certificate and that fake certificate can be used to intercept the secure communication and now middle man need a node means point from where the communication can intercept Wifi can give her/him that node because app does not verify whether that certificate is issue by server of some man in middle.

So to resolve this issue a Concept of Certificate pinning introduced in Which the certificate issued by server validated in Mobile Apps .In which the copy of certificate or fingerprint is stored in app locally and when the communication starts it compare the server certificate and the locally stored certificate or fingerprint if comparison successful then its ok Otherwise a warning message should be thrown.

You can get the Pins from the certificate ,there are many ways to get pins from certificate .

 Example of Certificate Pinning in  OKHttp client

val SSlCERTIFICATE_PINS: Array<String> = arrayOf("sha256/soipiv1taOudc4/2ZPMIPC0ikkSgxjahskahsaksha=")

 OkHttpClient.Builder builder = new OkHttpClient().newBuilder(); builder.connectTimeout(4, TimeUnit.MINUTES).readTimeout(4, TimeUnit.MINUTES); builder.certificatePinner(new CertificatePinner.Builder()        .add(www.myexample1.com", SSlCERTIFICATE_PINS)        .build()); okHttpClient = builder.build();

  Here we have register the certificate pins at time of Ok Http client object creations, You can add multiple certificates with different domains .

 private boolean certificateExpired=true;

Call call = client.newCall(Request);

Respons  okhttpresponse = call.execute();

 if (okhttpresponse.isSuccessful()) {    if (okhttpresponse.handshake() != null) {

for (java.security.cert.Certificate certificate : okhttpresponse.handshake().peerCertificates()) {    if (SSlCERTIFICATE_PINS.contains(CertificatePinner.pin(certificate))) {        certificateExpired = false;        break;    } else {        certificateExpired = true;    }     }

  }

}

After handshake completed now we get the Pins from the api response and verify that the API response pins match with our local pin if matches its  ok other wise we would show an error message .

On thing keep we should keep in our mind that when ever the server certificate expired or changed we have to update app local certificate and Publish app

𝐋𝐚𝐬𝐭 𝐂𝐡𝐚𝐧𝐜𝐞 𝐭𝐨 𝐆𝐞𝐭 𝐮𝐩 𝐭𝐨 𝟓𝟏% 𝐨𝐟𝐟 𝐨𝐧 𝐂𝐲𝐛𝐞𝐫 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐂𝐞𝐫𝐭𝐢𝐟𝐢𝐜𝐚𝐭𝐢𝐨𝐧𝐬 𝐚𝐧𝐝 𝐓𝐫𝐚𝐢𝐧𝐢𝐧𝐠 𝐄𝐧𝐫𝐨𝐥𝐥 𝐧𝐨𝐰: https://forms.gle/PSYx6787FhDmjYgG7

𝐃𝐌 𝐭𝐨 𝐠𝐞𝐭 𝐚𝐧 𝐮𝐩𝐭𝐨 𝟓𝟏% 𝐝𝐢𝐬𝐜𝐨𝐮𝐧𝐭 𝐨𝐧 𝐭𝐡𝐞 𝐂𝐲𝐛𝐞𝐫 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐜𝐨𝐮𝐫𝐬𝐞𝐬. 𝐄𝐧𝐫𝐨𝐥𝐥 𝐧𝐨𝐰: https://mailchi.mp/b8e123dd9bf8/securium-academy

🔗Linkedin: https://www.linkedin.com/company/secu… 🔗Twitter: https://twitter.com/Securium_academ 🔗Facebook: https://www.facebook.com/SecuriumAcad… 🔗Instagram: https://www.instagram.com/securiumaca…

One Security - Android Security and Antivirus

Antivirus app that protect your phone from malwares, viruses, fake apps, fraud apps, junk files, corrupted files, personal data and privacy. - One Security App Android

#OneSecurity #AndroidSecurity #Android #OneSecurityApk #SecurityApk

Samsung Galaxy A51 Starts Getting Android 12 Update in US.

B I O > T A P > P A S S F A B #androidography❤️ #androiddevelopers #aandroid #android #android17 #androidpassword #androidlock #androidcustomization #androidphone #androidusers #androidsecond #androide18 #jualappandroid #androidsecurity #androidsecrets #androidsecurityupdate #androidlockscreenremoval#androidforlife #androidqualitysucks https://www.instagram.com/p/COpQ4VYjnUd/?igshid=4shbsg03y6n

Kaspersky Internet Security for Android phones. Use this #security tool to #safe and #secure your devices For more details: https://boundbuzz.com/how-to-protect-your-android-device-with-kaspersky-internet-security/ #kaspersky #internet #security #protection #android #androidusers #androidapp #androidsecurity #androidphones #androiddevices #tech #tips #tricks #techy #boundbuzz #techtalks #technology #news #updates #applock #protection #tool #devicesafety #safetytips #safetytools #buzzbound #website #websevices #services https://www.instagram.com/p/CC8foMYHuPu/?igshid=u6pm4xyha0r5

‘#Joker’ an unethical #malware intruding the genuine behaviour of #Android smartphones. #Google has so far removed 24 apps found to be infected.

Reposted from @rico_4_you - Atomically so Sexy! She is a beauty she is #atomic she is #KEY2LE 'Lovin the look! #key2le #atomicred #keyboard #blackberrymobile #teamblackberry #style #freshflower #class #AndroidSecured #android #shotonkeyone #shotonblackberry #mobileshot #mobilepic #mobilephotography - #regrann https://www.instagram.com/p/BsOYJAUhHYq/?utm_source=ig_tumblr_share&igshid=75e0qydrbh94

Apk-Medit – Memory Search And Patch Tool On Debuggable Apk #adb #amp #android #androidsecurity #apk #hacker #hacking #cybersecurity #hackers #linux #ethicalhacking #programming #security #mrhacker

APKHunt: Static Code Analysis Tool for Android Apps | #AndroidSecurity #APKHunt #StaticAnalysis #Android

Smart Security App for Android

Android Smart Security App comes with all the features that required to ensure your phone security and performance.

Samsung Galaxy A32 Starts Getting Android 12 based on OneUI 4.1 update.

InsecureShop An Intentionally designed Vulnerable Android Application built in...

InsecureShop An Intentionally designed Vulnerable Android Application built in Kotlin. https://github.com/optiv/InsecureShop #android #playground #ctf #androidsecurity

GitHub - optiv/InsecureShop: An Intentionally designed Vulnerable Android Application built in Kotlin. - GitHub An Intentionally designed Vulnerable Android Application built in Kotlin. - GitHub - optiv/InsecureShop: An Intentionally designed Vulnerable Android Application built in Kotlin.