December 21, 2023 at 09:33AM The Chameleon Android banking trojan is back with new tricks, disabling biometrics to steal PINs on Android devices. This upgraded version evades detection by posing as Google Chrome through the Zombinder service. It now targets Android 13 and 14, bypassing security settings to gain accessibility permissions and disrupting biometric operations. … Read more
December 13, 2023 at 09:12AM Google is promoting the use of Clang sanitizers for enhancing the security of Android’s cellular baseband. The sanitizers, such as IntSan and BoundSan, help detect vulnerabilities and prevent remote code execution. Despite performance overhead, Google has enabled them in critical attack surfaces. The move complements the transition to memory-safe languages … Read more
December 11, 2023 at 10:12AM Google announced patches for high- and moderate-severity vulnerabilities in Chromecast, disclosed at the HardPwn USA 2023 competition. Three exploits were recognized, with reward recipients named. Vulnerabilities include supply chain interception and Android TV streaming box malware injection. Exploits allow persistent code execution without the user’s knowledge. Additionally, researchers identified attack … Read more
December 9, 2023 at 11:20AM Researchers presented the AutoSpill attack, targeting Android password managers during the autofill process. It exploits weaknesses in WebView controls, potentially leaking account credentials to the invoking app. Multiple password managers were found susceptible, with vendors taking steps to address the issue. The attack highlights the need for improved security measures … Read more
December 8, 2023 at 06:42AM A Bluetooth vulnerability enables attackers to bypass authentication and perform keystroke injection on Android, Linux, and Apple devices. Meeting Takeaways: 1. A security vulnerability has been identified that affects Android, Linux, and Apple devices pertaining to Bluetooth connections. 2. This vulnerability allows attackers to execute a Bluetooth authentication bypass. 3. … Read more
December 6, 2023 at 10:48AM iVerify, emerging from Trail of Bits as a seed-stage startup, introduces a platform targeting iOS and Android zero-day threats, focusing on combating mercenary spyware. Source: SecurityWeek. Takeaways from the meeting: 1. Company Profile: iVerify is a seed-stage startup. 2. Origin: The company has been spun out of Trail of Bits. … Read more
December 5, 2023 at 07:54AM The December 2023 Android security updates address 94 vulnerabilities, with fixes for multiple critical-severity issues. Takeaways from Meeting: 1. The latest Android security updates issued in December 2023 have addressed a total of 94 vulnerabilities. 2. Among these vulnerabilities, a number are categorized as having critical severity. 3. It is … Read more
December 4, 2023 at 02:46PM Google’s December 2023 Android update fixes 85 vulnerabilities, including a critical zero-click RCE bug in the System component and other high-severity issues. The most severe flaw allows remote execution without privileges or user interaction. Two zero-days were previously patched in October. Updates are released in two sets, with rollout times … Read more
November 9, 2023 at 01:08PM Android, with over 3 billion users, is a target for malware attacks. Anti-malware solutions like antivirus apps, firewalls, VPNs, and security patches are available but not foolproof against evolving threats. Evasion techniques and incremental malicious update attacks pose risks. Users should be cautious of downloads, keep devices and apps updated, … Read more
November 6, 2023 at 07:10AM A new cybercrime operation called ‘SecuriDropper’ is using a technique to bypass Android’s ‘Restricted Settings’ feature and install malware on devices. This allows the malware to access Accessibility Services and obtain sensitive information. The bypass method involves using session-based installation API for malicious APK files. The security issue is still … Read more