Vulnerability monitoring mechanism in Android based smartphone with correlation analysis on event-driven activities

“…They can also be used to develop or secondary develop applications that can effectively endanger the privacy and security of smartphone users. Malicious code also It can be repackaged into normal applications and rooting modules, thereby making a security hole into the smartphone operating system [76], [78], [79]. The heterogeneity, security mechanism and management mode of the application store enable mobile malicious programs to survive.…”

Detection, Traceability, and Propagation of Mobile Malware Threats

“…They can also be used to develop or secondary develop applications that can effectively endanger the privacy and security of smartphone users. Malicious code also It can be repackaged into normal applications and rooting modules, thereby making a security hole into the smartphone operating system [76], [78], [79]. The heterogeneity, security mechanism and management mode of the application store enable mobile malicious programs to survive.…”

Detection, Traceability, and Propagation of Mobile Malware Threats

“…It cannot only install an app that the user don't know but also leak private information or lead to billing. Also, update attack has a self-update feature, and can be divided into four main techniques [9]. Drive-by download is a form of remote attack that downloads and executes a malware without the user knowing and mainly user-after-free and Heap Spraying method attack cases are found.…”

“…Android Malware Genome Project categorizes 1,260 samples of malicious apps largely by their characteristics to Malware Installation, Activation, Malicious Payloads and Permission Uses [9]. Additionally, we can classify malicious app into Repacking, Update-Attack, Drive-by Download and Standalone [11]- [13] based on its internal activity pattern.…”

“…Disguising as a normal application, it leaks personal or financial information of users by causing damages often [9], [14], [15]. And Update attack is a method that installs a malicious app when a user downloads an update.…”

“…However, an advanced mechanism that provides more enhanced ways of classifying malicious apps on common mobile devices should be developed [8], [9]. In first, it is necessary to analyze the attack mechanism based on the recent security vulnerabilities of Android-based mobile devices, and analyses the characteristics of malicious apps with activation pattern using Linux based Strace tool [10] on Android Platform.…”

Detection of Malicious Android Mobile Applications Based on Aggregated System Call Events

Comprehensive review and analysis of anti-malware apps for smartphones