This page runs inside the bet365 casino WebView via the gaming prefix bypass.
The intent:// handler in WebviewCard launches intents with bet365's process identity,
gaining access to signature-protected components in sibling apps.
Step 1: Verify Bridge Access
Step 2: Escalate to WebviewCard (gaming NAV)
Opens this page in a WebviewCard which has MembersHandler + intent:// handler.
Cross-App: Launch bet365 Games App
Uses intent:// to launch the Casino Games app (com.bet365.bet365GamesApp.play).
On prod builds with matching signature, this accesses signature-protected components.
Cross-App: Launch bet365 Bingo App
Cross-App: Launch bet365 Poker App
Cross-App: Launch Authenticator
Targets the Authenticator's deep link handler for authentication trigger.
Cross-App: Open Authenticator OAuth
Targets the Games app OAuth callback handler with attacker-controlled code parameter.
Device: System Settings
Demonstrates launching system settings to social-engineer the user.