owasp-seraphimdroid
owasp-seraphimdroid copied to clipboard
Published
20 hours ago •
nikolamilosevic86
nikolamilosevic86
SMS log error
The Blocker logs option within the application works very well. But, there is a small issue.
Issue :
The SMS log notifies every message that comes from the service provider, even if the message is legit and from a trustworthy source. Almost every service number is being logged and is flagged as potentially harmful. There is lack of proper inspection on the incoming SMS number.
There is a feature that checks whether a SMS contains link or phone number which calling or visiting may be harmful (that was the idea). However, current solution uses only regular expressions, so this happens. Do you have suggestion how to fix it and provide some sort of protection against phishing?
