An Android app requests READ_EXTERNAL_STORAGE, MANAGE_EXTERNAL_STORAGE, READ_CLIPBOARD, INTERNET, ACCESS_FINE_LOCATION, READ_CONTACTS, REQUEST_INSTALL_PACKAGES, SYSTEM_ALERT_WINDOW, FOREGROUND_SERVICE, READ_PHONE_NUMBERS . Which permission combinations enable cross-app data leakage? Select all that apply. (4 correct answers)

Question

An Android app requests  READ_EXTERNAL_STORAGE, MANAGE_EXTERNAL_STORAGE, READ_CLIPBOARD, INTERNET, ACCESS_FINE_LOCATION, READ_CONTACTS, REQUEST_INSTALL_PACKAGES, SYSTEM_ALERT_WINDOW, FOREGROUND_SERVICE, READ_PHONE_NUMBERS . Which permission combinations enable cross-app data leakage?  Select all that apply. (4 correct answers)

Answer

Clipboard access forcing background crashes

Answer

Contacts + Internet supporting bulk exfiltration

Answer

Clipboard access exposing passwords copied from other apps

Answer

Reading  phone numbers enabling SIM hijacking

Answer

Installing unknown packages without user awareness

Answer

System alert windows tricking users into entering credentials

Answer

External storage access is leaking files saved by other apps

Answer

Foreground service preventing other apps from storing data

Answer

Fine location access bypassing Wi-Fi geolocation

Answer

Alerts enabling direct access to kernel memory

Crowdly

An Android app requests READ_EXTERNAL_STORAGE, MANAGE_EXTERNAL_STORAGE, READ_CL...

Want instant access to all verified answers on moodle.bcu.ac.uk?