Posts

Showing posts from November, 2018
December 2018 - Upcoming Blog Posts' List;

Work ethics at Tata Motors in 1980s.Features improvement suggestions for InstaRead.Features improvement suggestions for LinkedIn.Features improvement suggestions for Whatsapp.

Smartphone applications abusing user trust – and why code audit may not be sufficient to control this abuse

Image
Majority of Smartphone users are not software engineering or application development experts, or a technology expert for that matter. Application users trust their application distributor (application store or equivalent) and application owner to be honest while transacting with them. Craig Silverman at BuzzFeed News reported a research under taken by Kochava on 26 Nov 2018 alleging that a number of popular Android applications (developed by Cheetah Mobile and Kika Tech) have been committing advertisement fraud. The article explains ‘click injection’ and ‘click flooding’ concepts in very simple terminology along with the help of easy to understand diagrams.
The challenge of inserting malicious code in an application or a software by an unscrupulous technology company may be mitigated by; making the audit of source code compulsory by an independent code audit professional, andplacing necessary controls in place that only the audited code goes in to the production.
An argument against sour…