May 2, 2024 at 12:05PM A novel attack called “Dirty Stream” exploits an Android flaw to manipulate file transfers between apps, potentially enabling unauthorized code execution and data theft. Microsoft research warns of over four billion affected app installations, highlights vulnerable apps like Xiaomi’s File Manager and WPS Office, and urges developers to address the … Read more
May 2, 2024 at 11:18AM Several Android apps in the Google Play Store were found vulnerable to a path traversal-affiliated exploit, allowing malicious apps to overwrite files in the vulnerable app’s home directory. The implications include arbitrary code execution and token theft. Vulnerable apps include Xiaomi File Manager and WPS Office, but the issue has … Read more
April 29, 2024 at 12:13PM Google blocked 2.28 million Android apps and 333,000 Google Play accounts due to policy violations, part of its ‘SAFE’ principles to protect users and innovate responsibly. Enhanced reviewing processes and collaborations with SDK providers resulted in the rejection or remediation of 200,000 risky app submissions. Google advises sourcing apps only … Read more
April 29, 2024 at 12:05PM Google blocked 2.28 million apps from Google Play due to policy violations, while also identifying and blocking 333,000 accounts for malware and policy breaches. These actions are part of Google’s ‘SAFE’ principles to protect users and developers. Additional efforts include rejecting risky app submissions and partnering with SDK providers. Users … Read more
April 26, 2024 at 07:00AM Fake browser updates are being used to distribute an undisclosed Android malware dubbed Brokewell, described as a modern banking trojan with data-theft and remote-control capabilities. The malware disguises itself as popular apps like Google Chrome, ID Austria, and Klarna and shows resilience in evading Google’s security restrictions. The threat is … Read more
April 25, 2024 at 10:05AM New Android banking trojan “Brokewell” discovered by security researchers, capable of capturing all device activity through a fake Google Chrome update. Used in previous campaigns targeting financial services, it aims to steal data and provide remote control to attackers. Developed by an individual called Baron Samedit, with a loader bypassing … Read more
April 10, 2024 at 10:34AM An Android malware campaign named eXotic Visit is targeting users in South Asia, particularly in India and Pakistan, through fake apps distributed on dedicated websites and Google Play Store. The campaign uses the XploitSPY RAT to gather sensitive data, and its purpose is espionage targeting victims in the region. The … Read more
April 9, 2024 at 10:45AM Human rights activists in Morocco and the Western Sahara are being targeted by a new threat actor called Starry Addax. They are using phishing attacks to trick victims into installing fake Android apps and harvesting credentials from Windows users. The actor has been active since January 2024 and is using … Read more
April 8, 2024 at 08:36AM Crowdfense, a firm specializing in exploit acquisition, seeks zero-day exploits for Android, iOS, Chrome, and Safari, offering rewards of up to $30 million. The company’s program, established in 2019 and expanded in 2021, provides substantial bounties for high-quality exploits. Other firms are also seeking to purchase Android and iOS exploits, … Read more
April 3, 2024 at 06:24AM Google released patches for 28 Android vulnerabilities and 25 Pixel device bugs, including two actively exploited issues (CVE-2024-29745 and CVE-2024-29748). Notable among the flaws is CVE-2024-23704, a high-severity vulnerability in the System component. The update also addressed security issues in Qualcomm and MediaTek components and resolved bugs in Android Automotive … Read more