{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,22]],"date-time":"2026-01-22T16:17:58Z","timestamp":1769098678307,"version":"3.49.0"},"reference-count":43,"publisher":"Emerald","issue":"1","license":[{"start":{"date-parts":[[2021,8,19]],"date-time":"2021-08-19T00:00:00Z","timestamp":1629331200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.emerald.com\/insight\/site-policies"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["ICS"],"published-print":{"date-parts":[[2022,1,31]]},"abstract":"<jats:sec>\n<jats:title content-type=\"abstract-subheading\">Purpose<\/jats:title>\n<jats:p>The purpose of this paper is to investigate the private-data pertaining to the interaction of users with social media applications that can be recovered from second-hand Android devices.<\/jats:p>\n<\/jats:sec>\n<jats:sec>\n<jats:title content-type=\"abstract-subheading\">Design\/methodology\/approach<\/jats:title>\n<jats:p>This study uses a black-box testing-principles based methodology to develop use-cases that simulate real-world case-scenarios of the activities performed by the users on the social media application. The authors executed these use-cases in a controlled experiment and examined the Android smartphone to recover the private-data pertaining to these use-cases.<\/jats:p>\n<\/jats:sec>\n<jats:sec>\n<jats:title content-type=\"abstract-subheading\">Findings<\/jats:title>\n<jats:p>The results suggest that the social media data recovered from Android devices can reveal a complete timeline of activities performed by the user, identify all the videos watched, uploaded, shared and deleted by the user, disclose the username and user-id of the user, unveil the email addresses used by the user to download the application and share the videos with other users and expose the social network of the user on the platform. Forensic investigators may find this data helpful in investigating crimes such as cyber bullying, racism, blasphemy, vehicle thefts, road accidents and so on. However, this data-breach in Android devices is a threat to user's privacy, identity and profiling in second-hand market.<\/jats:p>\n<\/jats:sec>\n<jats:sec>\n<jats:title content-type=\"abstract-subheading\">Practical implications<\/jats:title>\n<jats:p>Perceived notion of data sanitisation as a result of application removal and factory-reset can have serious implications. Though being helpful to forensic investigators, it leaves the user vulnerable to privacy breach, identity theft, profiling and social network revealing in second-hand market. At the same time, users' sensitivity towards data-breach might compel users to refrain from selling their Android devices in second-hand market and hamper device recycling.<\/jats:p>\n<\/jats:sec>\n<jats:sec>\n<jats:title content-type=\"abstract-subheading\">Originality\/value<\/jats:title>\n<jats:p>This study attempts to bridge the literature gap in social media data-breach in second-hand Android devices by experimentally determining the extent of the breach. The findings of this study can help digital forensic investigators in solving crimes such as vehicle theft, road accidents, cybercrimes and so on. It can assist smartphone users to decide whether to sell their smartphones in a second-hand market, and at the same time encourage developers and researchers to design methods of social media data sanitisation.<\/jats:p>\n<\/jats:sec>","DOI":"10.1108\/ics-03-2021-0038","type":"journal-article","created":{"date-parts":[[2021,8,18]],"date-time":"2021-08-18T09:57:22Z","timestamp":1629280642000},"page":"117-136","source":"Crossref","is-referenced-by-count":4,"title":["To sell, or not to sell: social media data-breach in second-hand Android devices"],"prefix":"10.1108","volume":"30","author":[{"given":"Oussama","family":"BenRhouma","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ali","family":"AlZahrani","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ahmad","family":"AlKhodre","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Abdallah","family":"Namoun","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Wasim Ahmad","family":"Bhat","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"140","published-online":{"date-parts":[[2021,8,19]]},"reference":[{"key":"key2022012710484492200_ref001","first-page":"660","article-title":"Digital forensic analysis of Facebook app in virtual environment","volume-title":"2019 6th International Conference on Computing for Sustainable Global Development (INDIACom)","year":"2019"},{"issue":"1","key":"key2022012710484492200_ref002","doi-asserted-by":"crossref","first-page":"62","DOI":"10.1108\/ICS-03-2017-0011","article-title":"Forensic analysis of Google Allo messenger on android platform","volume":"27","year":"2019","journal-title":"Information and Computer Security"},{"key":"key2022012710484492200_ref003","first-page":"301122","article-title":"Forensic analysis of open-source XMPP multi-client social networking apps on IOS devices","volume":"36","year":"2021","journal-title":"Forensic Science International: Digital Investigation"},{"key":"key2022012710484492200_ref004","first-page":"12116","article-title":"Forensic analysis of Instagram on android","volume-title":"IOP Conference Series: Materials Science and Engineering","year":"2020"},{"key":"key2022012710484492200_ref005","first-page":"1035","article-title":"Snapchat analysis to discover digital forensic artifacts on android smartphone","year":"2017"},{"key":"key2022012710484492200_ref006","article-title":"Forensic analysis of twitch video streaming activities on android","year":"2021","journal-title":"Journal of Forensic Sciences"},{"key":"key2022012710484492200_ref007","doi-asserted-by":"crossref","first-page":"31","DOI":"10.1016\/j.diin.2017.09.002","article-title":"Forensic analysis of telegram messenger on android smartphones","volume":"23","year":"2017","journal-title":"Digital Investigation"},{"key":"key2022012710484492200_ref008","doi-asserted-by":"crossref","first-page":"227","DOI":"10.1016\/j.jclepro.2018.03.253","article-title":"Exploring Chinese consumers\u2019 attitude and behavior toward smartphone recycling","volume":"188","year":"2018","journal-title":"Journal of Cleaner Production"},{"key":"key2022012710484492200_ref009","unstructured":"Banafati, S.E. Ghurye, J. Lee, K. and Kim, D. (2021), \u201cAnalyzing privacy leakage from used electronic devices in secondhand market\u201d, available at: https:\/\/wiki.cs.umd.edu\/cmsc798F_s16\/images\/3\/3a\/NSFproposal_revised.pdf (accessed 25 February 2021)."},{"key":"key2022012710484492200_ref010","doi-asserted-by":"crossref","first-page":"345","DOI":"10.4018\/978-1-4666-8387-7.ch017","article-title":"Achieving efficient purging in transparent per-file secure wiping extensions","volume-title":"Handbook of Research on Security Considerations in Cloud Computing","year":"2015"},{"key":"key2022012710484492200_ref011","doi-asserted-by":"crossref","first-page":"57","DOI":"10.1016\/j.diin.2018.09.001","article-title":"Forensic analysis of b-tree file system (Btrfs)","volume":"27","year":"2018","journal-title":"Digital Investigation"},{"key":"key2022012710484492200_ref012","doi-asserted-by":"crossref","first-page":"109845","DOI":"10.1016\/j.forsciint.2019.06.003","article-title":"Forensic analysis of sync. com and flipdrive cloud applications on android platform","volume":"302","year":"2019","journal-title":"Forensic Science International"},{"issue":"2","key":"key2022012710484492200_ref013","doi-asserted-by":"crossref","first-page":"198","DOI":"10.1016\/j.scijus.2020.10.002","article-title":"Can computer forensic tools be trusted in digital investigations?","volume":"61","year":"2021","journal-title":"Science and Justice"},{"issue":"4","key":"key2022012710484492200_ref014","doi-asserted-by":"crossref","first-page":"555","DOI":"10.1108\/ICS-01-2020-0016","article-title":"A systematic literature review of the factors affecting smartphone user threat avoidance behaviour","volume":"28","year":"2020","journal-title":"Information and Computer Security"},{"key":"key2022012710484492200_ref015","doi-asserted-by":"crossref","first-page":"101469","DOI":"10.1016\/j.tele.2020.101469","article-title":"Smartphones and psychological well-being in china: examining direct and indirect relationships through social support and relationship satisfaction","volume":"54","year":"2020","journal-title":"Telematics and Informatics"},{"issue":"2","key":"key2022012710484492200_ref016","first-page":"109","article-title":"Forensic investigation of Dcard social media","volume":"34","year":"2019","journal-title":"Technical Journal"},{"issue":"5","key":"key2022012710484492200_ref017","first-page":"850","article-title":"Forensic analysis of social networks based on Instagram","volume":"21","year":"2019","journal-title":"International Journal of Information Security"},{"issue":"2","key":"key2022012710484492200_ref018","first-page":"321","article-title":"Linkedin social media forensics on windows 10","volume":"22","year":"2020","journal-title":"International Journal of Information Security"},{"key":"key2022012710484492200_ref019","unstructured":"Cox, S. (2020), \u201cEverything about Vigo video you should know [2020 reviews]\u201d, available at: https:\/\/filmora.wondershare.com\/video-editing-tips\/vigo-video.html (accessed 27 February 2021)."},{"issue":"4","key":"key2022012710484492200_ref020","doi-asserted-by":"crossref","first-page":"645","DOI":"10.1108\/ICS-01-2020-0004","article-title":"From ISO\/IEC27001: 2013 and ISO\/IEC27002: 2013 to GDPR compliance controls","volume":"28","year":"2020","journal-title":"Information and Computer Security"},{"key":"key2022012710484492200_ref021","first-page":"1","article-title":"Post-mortem digital forensic artifacts of tiktok android app","volume-title":"Proceedings of the 15th International Conference on Availability, Reliability and Security","year":"2020"},{"issue":"7\/8","key":"key2022012710484492200_ref022","doi-asserted-by":"crossref","first-page":"1412","DOI":"10.1108\/EJM-01-2017-0048","article-title":"Comparison of perceived acquisition value sought by online second-hand and new goods shoppers","volume":"52","year":"2018","journal-title":"European Journal of Marketing"},{"issue":"3","key":"key2022012710484492200_ref023","doi-asserted-by":"crossref","first-page":"359","DOI":"10.1108\/ICS-07-2019-0090","article-title":"Mobile users\u2019 information privacy concerns instrument and IoT","volume":"28","year":"2020","journal-title":"Information and Computer Security"},{"key":"key2022012710484492200_ref024","doi-asserted-by":"crossref","first-page":"321","DOI":"10.1016\/j.scitotenv.2016.10.054","article-title":"Estimation of obsolete cellular phones generation: a case study of China","volume":"575","year":"2017","journal-title":"Science of the Total Environment"},{"key":"key2022012710484492200_ref025","first-page":"1","article-title":"Map my murder: a digital forensic study of mobile health and fitness applications","volume-title":"Proceedings of the 14th International Conference on Availability, Reliability and Security","year":"2019"},{"key":"key2022012710484492200_ref026","first-page":"1","article-title":"Forensic analysis of tiktok application to seek digital artifacts on android smartphone","volume-title":"2020 RIVF International Conference on Computing and Communication Technologies (RIVF)","year":"2020"},{"key":"key2022012710484492200_ref027","doi-asserted-by":"crossref","first-page":"101833","DOI":"10.1016\/j.cose.2020.101833","article-title":"What\u2019s really \u2018happning\u2019? A forensic analysis of android and IOS happn dating apps","volume":"94","year":"2020","journal-title":"Computers and Security"},{"key":"key2022012710484492200_ref028","first-page":"1","article-title":"Identification of factors relevant for the estimation of smartphone life cycle","volume-title":"2017 25th Telecommunication Forum (TELFOR)","year":"2017"},{"issue":"5","key":"key2022012710484492200_ref029","doi-asserted-by":"crossref","first-page":"701","DOI":"10.1108\/ICS-07-2019-0077","article-title":"Constructing secure and memorable passwords","volume":"28","year":"2020","journal-title":"Information and Computer Security"},{"key":"key2022012710484492200_ref030","first-page":"301107","article-title":"Zooming into the pandemic! A forensic analysis of the zoom application","volume":"36","year":"2021","journal-title":"Forensic Science International: Digital Investigation"},{"key":"key2022012710484492200_ref031","first-page":"1433","article-title":"Are your neighbors swingers or kinksters? Feeld app forensic analysis","volume-title":"2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications\/12th IEEE International Conference On Big Data Science And Engineering (TrustCom\/BigDataSE)","year":"2018"},{"key":"key2022012710484492200_ref032","first-page":"1","article-title":"Forensic analysis of Wickr application on android devices","volume-title":"2013 IEEE International Conference on Computational Intelligence and Computing Research","year":"2013"},{"issue":"4","key":"key2022012710484492200_ref033","doi-asserted-by":"crossref","first-page":"469","DOI":"10.1080\/00450618.2015.1066854","article-title":"Investigating social networking applications on smartphones detecting Facebook, Twitter, Linkedin and Google+ artefacts on android and IOS platforms","volume":"48","year":"2016","journal-title":"Australian Journal of Forensic Sciences"},{"key":"key2022012710484492200_ref034","doi-asserted-by":"crossref","first-page":"19","DOI":"10.1016\/j.jretconser.2019.05.014","article-title":"Online second-hand shopping motivation\u2013conceptualization, scale development, and validation","volume":"51","year":"2019","journal-title":"Journal of Retailing and Consumer Services"},{"issue":"5","key":"key2022012710484492200_ref035","doi-asserted-by":"crossref","first-page":"450","DOI":"10.1108\/ICS-02-2014-0013","article-title":"Logical acquisition and analysis of data from android mobile devices","volume":"23","year":"2015","journal-title":"Information and Computer Security"},{"key":"key2022012710484492200_ref036","doi-asserted-by":"crossref","first-page":"S77","DOI":"10.1016\/j.diin.2015.05.009","article-title":"Network and device forensic analysis of android social-messaging applications","volume":"14","year":"2015","journal-title":"Digital Investigation"},{"issue":"4","key":"key2022012710484492200_ref037","doi-asserted-by":"crossref","first-page":"371","DOI":"10.1080\/00450618.2018.1533038","article-title":"An analysis of anti-forensic capabilities of b-tree file system (Btrfs)","volume":"52","year":"2020","journal-title":"Australian Journal of Forensic Sciences"},{"issue":"3","key":"key2022012710484492200_ref038","doi-asserted-by":"crossref","first-page":"14","DOI":"10.1016\/S1361-3723(20)30030-0","article-title":"File system\u2013anti-forensics types, techniques and tools","volume":"2020","year":"2020","journal-title":"Computer Fraud and Security"},{"key":"key2022012710484492200_ref039","article-title":"Google and Facebook data retention and location tracking through forensic cloud analysis","year":"2019"},{"key":"key2022012710484492200_ref040","doi-asserted-by":"crossref","first-page":"3","DOI":"10.1016\/j.diin.2016.11.002","article-title":"Forensic analysis of Wechat on android smartphones","volume":"21","year":"2017","journal-title":"Digital Investigation"},{"key":"key2022012710484492200_ref041","doi-asserted-by":"crossref","first-page":"602","DOI":"10.1109\/CompComm.2018.8781056","article-title":"Forensics on twitter and Wechat using a customised android emulator","volume-title":"2018 IEEE 4th International Conference on Computer and Communications (ICCC)","year":"2018"},{"key":"key2022012710484492200_ref042","doi-asserted-by":"crossref","first-page":"41","DOI":"10.1016\/B978-0-12-805303-4.00004-6","article-title":"Forensic investigation of social media and instant messaging services in firefox os: Facebook, Twitter, Google+, Telegram, Openwapp, and line as case studies","volume-title":"Contemporary Digital Forensic Investigations of Cloud And Mobile Applications","year":"2017"},{"key":"key2022012710484492200_ref043","first-page":"990","article-title":"A dynamic credible factory reset mechanism of personal data in android device","year":"2015"}],"container-title":["Information &amp; Computer Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/ICS-03-2021-0038\/full\/xml","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/ICS-03-2021-0038\/full\/html","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,7,25]],"date-time":"2025-07-25T01:22:47Z","timestamp":1753406567000},"score":1,"resource":{"primary":{"URL":"http:\/\/www.emerald.com\/ics\/article\/30\/1\/117-136\/104711"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,8,19]]},"references-count":43,"journal-issue":{"issue":"1","published-online":{"date-parts":[[2021,8,19]]},"published-print":{"date-parts":[[2022,1,31]]}},"alternative-id":["10.1108\/ICS-03-2021-0038"],"URL":"https:\/\/doi.org\/10.1108\/ics-03-2021-0038","relation":{},"ISSN":["2056-4961","2056-4961"],"issn-type":[{"value":"2056-4961","type":"print"},{"value":"2056-4961","type":"print"}],"subject":[],"published":{"date-parts":[[2021,8,19]]}}}