Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> copy it to the clipboard and fill the form myself.

I'm not that familiar with mobile dev, but could a rogue app just sit in the background, making a copy of whatever's in the clipboard?



If you have such an application installed... the system has already been compromised.


Yes, Keepass for example avoids this by pasting some of the characters with the clipboard and some of the characters by simulating keypresses. See: https://keepass.info/%0D/help/v2/autotype_obfuscation.html

Lastpass mitigates the issue somewhat by clearing the clipboard after a certain amount of time.




Consider applying for YC's Summer 2026 batch! Applications are open till May 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: