Use Broadcasts Carefully

    • Create a malicious app that includes a component with the same name as a legitimate component
    • As long as that name (or namespace) is not already in use, the malicious app will install on the target device
    • Extract sensitive data from the broadcast Intent sent to that component name”?