Android Deeplink Hijacking
Deep link hijacking occurs when a mobile app trusts a link route that lacks a platform verification mechanism binding it to a single legitimate application. On Android, a custom URI scheme such as exampleapp:// can be registered by any installed application. When a magic-link login flow places an authentication