this got probably asked already, but anyways:
How dangerous is it really to click on a “malicious” link for example in some random spam mail you got?
IF YOU USE
– the most recent version of your operating system
– the most recent version of your browser
and you do NOT click on anything on that website. Just opening it up.
Is it actually possible to something like a “drive-by-download” then? And can that downloaded file then be executed (again WITHOUT user input)?
I programm websites myself and i would love to see a simple example application for that, because i kinda struggle to belive that it is that easy…
And when it comes to android smartphones it is even more extreme, right? The ONLY real danger would be if i download AND install an malicious APK file.
What other “damage” could a website do to me on a smartphone? (again under the assumption that the user will only open the website, but won´t click on anything or grant permissions for anything)