View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Software
April 11, 2014

HTML5-powered apps ‘highly vulnerable to malicious attacks’

About 50% of mobile apps will be using HTML5-based technologies by 2016, says Gartner.

By CBR Staff Writer

An emerging technology called HTML5-based development that are gaining popularity in the mobile industry are becoming highly vulnerable to malicious attacks, new research has revealed.

According to researchers at Syracuse University, HTML5-based technologies are vulnerable to malicious codes that can be easily injected and executed. This is why the Cross-Site Scripting (XSS) attack is still one of the most common attacks in the internet.

The researchers said: "When the adoption of this technology reaches certain threshold, worm attacks would become quite common unless we do something to stop it."

The research coincides with another report from Gartner that warned by 2016, 50% of mobile apps will be using HTML5-based technologies.

The report revealed that XSS attacks cannot only be targeted at mobile apps through a single channel, but can also attack from multiple channels, including 2D barcode, Wi-Fi scanning, Bluetooth pairing, MP3 songs, MP4 videos, SMS messages, NFC tags and Contact list.

"As long as an HTML5-based app displays information obtained from outside or from another app, it may be a potential victim," the report said.

"All major mobile systems would be affected, including Android, iOS, Blackberry, Windows Phone, etc., because they all support HTML5-based mobile apps."

Content from our partners
Scan and deliver
GenAI cybersecurity: "A super-human analyst, with a brain the size of a planet."
Cloud, AI, and cyber security – highlights from DTX Manchester

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how Progressive Media Investments may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.