Overlay Vulnerability

MOBILE_CLIENT/COMMON/_HIGH/OVERLAY_VULNERABILITY/description.md

@@ -0,0 +1,4 @@
+
+# Overlay Vulnerability
+
+The Overlay Vulnerability is a security flaw that allows an attacker to overlay malicious content or interfaces on top of legitimate applications, tricking users into interacting with the attacker's content instead. This can lead to various malicious activities, such as stealing sensitive information, capturing login credentials, or performing unauthorized actions on the user's behalf.

MOBILE_CLIENT/COMMON/_HIGH/OVERLAY_VULNERABILITY/meta.json

@@ -0,0 +1,19 @@
+{
+    "risk_rating": "high",
+    "short_description": "Overlay Vulnerability is a type of vulnerability where an attacker can overlay malicious content on top of legitimate content, leading to potential security breaches.",
+    "references": {
+        "Overlay Attacks: Top Techniques And How To Counter Them": "https://www.appsealing.com/overlay-attacks/",
+        "Mobile overlay attacks on Android": "https://www.ikarussecurity.com/en/mobile-device-management-en/mobile-overlay-attacks-on-android/"
+    },
+    "title": "Overlay Vulnerability",
+    "privacy_issue": false,
+    "security_issue": true,
+    "categories": {
+        "OWASP_MASVS_L1": [
+            "MSTG_PLATFORM_2"
+        ],
+        "OWASP_MASVS_L2": [
+            "MSTG_PLATFORM_2"
+        ]
+    }
+}

MOBILE_CLIENT/COMMON/_HIGH/OVERLAY_VULNERABILITY/recommendation.md

@@ -0,0 +1,4 @@
+
+# Overlay Vulnerability
+
+To mitigate overlay vulnerabilities in mobile applications, developers should implement robust security measures with a focus on enhancing settings and user interactions. First and foremost, ensure that user inputs and application settings undergo thorough validation and filtering to prevent potential exploitation by malicious overlays. Pay special attention to sensitive settings that can be manipulated by overlays, such as authentication parameters or access controls. Implement strict input validation checks on user-modifiable settings to prevent unauthorized changes. When handling settings related to user authentication or authorization, enforce strong authentication mechanisms and authorization controls to minimize the impact of potential overlay attacks. Provide clear user guidance within the application on recognizing and avoiding suspicious overlays. Regularly update the application to address any newly identified vulnerabilities, and consider implementing overlay detection mechanisms to enhance the application's resilience against potential threats.