@inproceedings{90e3ef4164bc47128e96ce9d6420833d,
title = "Lie to Me: Abusing the Mobile Content Sharing Service for Fun and Profit",
abstract = "Online content sharing is a widely used feature in Android apps. In this paper, we observe a new Fake-Share attack that adversaries can abuse existing content sharing services to manipulate the displayed source of shared content to bypass the content review of targeted Online Social Apps (OSAs) and induce users to click on the shared fraudulent content. We show that seven popular content-sharing services (including WeChat, AliPay, and KakaoTalk) are vulnerable to such an attack. To detect this kind of attack and explore whether adversaries have leveraged it in the wild, we propose DeFash, a multi-granularity detection tool including static analysis and dynamic verification. The extensive in-the-lab and in-the-wild experiments demonstrate that DeFash is effective in detecting such attacks. We have identified 51 real-world apps involved in Fake-Share attacks. We have further harvested over 24K Sharing Identification Information (SIIs) that can be abused by attackers. It is hence urgent for our community to take actions to detect and mitigate this kind of attack.",
keywords = "Content Sharing, Data-flow Analysis, Fake-Share Attack, OSAs, Secret Leakage",
author = "Guosheng Xu and Siyi Li and Hao Zhou and Shucen Liu and Yutian Tang and Li Li and Xiapu Luo and Xusheng Xiao and Guoai Xu and Haoyu Wang",
note = "Funding Information: This work is supported by NSFC (No. 61772492, 62072428), the CAS Pioneer Hundred Talents Program, and the Danish Council for Independent Research (SEMIOTIC) and the EU H2020 project MORE. Xike Xie is the corresponding author. Funding Information: This work is supported by the National Natural Science Foundation of China (grants No.62072046). Publisher Copyright: {\textcopyright} 2022 ACM.; 31st ACM World Wide Web Conference, WWW 2022 ; Conference date: 25-04-2022 Through 29-04-2022",
year = "2022",
month = apr,
day = "25",
doi = "10.1145/3485447.3512151",
language = "English",
series = "WWW 2022 - Proceedings of the ACM Web Conference 2022",
publisher = "Association for Computing Machinery, Inc",
pages = "3327--3335",
booktitle = "WWW 2022 - Proceedings of the ACM Web Conference 2022",
}