This talk discusses the attack methodology for mobile applications. It explores the Owasp Top 10 Mobile issues and links then to gaps in daily coding practices followed by Mobile app developers for iOS and Android. We also discuss mitigations for these prevalent issues, safe defaults and secure coding practices to rely on during development.