Collecting Cyber-News from over 60 sources

Tag: android

Trojanized Red Alert App Targets Israeli Users in SMS Scam to Steal Sensitive Data

Mar 11, 2026 8:47 AM

Tags: android, cyber, data, mobile, scam, service, smishing, spyware

A mobile spyware campaign abusing a trojanized version of the Red Alert rocket warning Android app to target Israeli users via SMS smishing messages that impersonate official Home Front Command alerts. The fake app keeps full rocket alert functionality so it looks and behaves like the legitimate service while silently exfiltrating sensitive data in the…
New BeatBanker Android malware poses as Starlink app to hijack devices

Mar 10, 2026 11:48 PM

Tags: android, google, malware

A new Android malware named BeatBanker can hijack devices and tricks users into installing it by posing as a Starlink app on websites masquerading as the official Google Play Store. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-beatbanker-android-malware-poses-as-starlink-app-to-hijack-devices/
SurxRAT Android Malware Uses LLMs for Phishing and Data Theft

Mar 10, 2026 9:48 AM

Tags: access, android, control, credentials, cyber, cybercrime, data, LLM, malware, phishing, ransomware, theft

A new Android Remote Access Trojan (RAT) named SurxRAT, which is being sold as a commercial malware platform through a Telegram-based malware”‘as”‘a”‘service (MaaS) ecosystem. The malware, marketed under the SURXRAT V5 branding, enables cybercriminals to create customized Android malware builds capable of surveillance, credential theft, remote device control, and ransomware-style device locking. The malware appears…
Android-Geräte in Gefahr – Zero-Day-Lücke betrifft 235 Qualcomm-Chipsets

Mar 10, 2026 7:47 AM

Tags: android, zero-day

First seen on security-insider.de Jump to article: www.security-insider.de/android-qualcomm-sicherheitsluecke-cve-2026-21385-aktiv-ausgenutzt-a-9a70ab85bab033b9cce1df805580df7c/
Secure Identity for TAK/ATAK at the Tactical Edge

Mar 10, 2026 12:47 AM

Tags: android, awareness, identity

Team Awareness Kit (TAK) and its Android variant, the Android Tactical Assault Kit (ATAK), are situational awareness platforms used across the military”, dismounted infantry, vehicle commanders, air crews, SOF operators. If you need a common operating picture in the field, TAK is probably running somewhere in your stack. But there’s a problem that’s easy to…
Hackers Spread Fake Red Alert Rocket Alert App to Spy on Israeli Users

Mar 7, 2026 2:47 PM

Tags: android, data, hacker, malicious, spy, spyware

Researchers at Acronis have discovered a malicious trojanized version of the Red Alert rocket warning app targeting Israeli Android users. Distributed via fake Home Front Command SMS messages, this spyware steals GPS data, SMS messages, and contact lists while maintaining full alert functionality. First seen on hackread.com Jump to article: hackread.com/hackers-fake-red-alert-rocket-alert-app-spy-israel-users/
Zero-day in Android phone chips under active attack

Mar 4, 2026 6:51 PM

Tags: android, attack, exploit, google, mobile, phone, vulnerability, zero-day

Google and Qualcomm have tag-teamed a serious vulnerability in the chipsets used in Android mobile devices, which has been exploited in the wild as a zero-day First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366639578/Zero-day-in-Android-phone-chips-under-active-attack
Google’s Biggest Android Security Update in Years Fixes 129 Bugs, Including an Actively Exploited Zero-Day

Mar 4, 2026 6:51 PM

Tags: android, exploit, flaw, google, update, zero-day

Google’s March 2026 Android update patches 129 flaws, including an actively exploited Qualcomm zero-day, and urges users to install 2026-03-05. The post Google’s Biggest Android Security Update in Years Fixes 129 Bugs, Including an Actively Exploited Zero-Day appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-google-android-security-update-129-vulnerabilities/
High-severity Qualcomm bug hits Android devices in targeted attacks

Mar 4, 2026 3:48 PM

Tags: android, attack, exploit, flaw, google, vulnerability

Google has patched 129 Android vulnerabilities, including an actively exploited flaw in a widely used Qualcomm component. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/high-severity-qualcomm-bug-hits-android-devices-in-targeted-attacks/
Perplexity’s Comet Browser Breached Through Calendar Invite Attack

Mar 4, 2026 1:47 PM

Tags: android, attack, cyber, flaw, google, macOS, malicious, windows

Security researchers at Zenity Labs disclosed a critical flaw in Perplexity’s Comet “agentic” browser that allowed attackers to steal local files using a malicious Google Calendar invite. The issue, dubbed PerplexedBrowser and grouped under Zenity’s “PleaseFix” family, affected Comet on macOS, Windows, and Android and was rated P1 (critical) in Bugcrowd. The attack required no…
Qualcomm Zero-Day Exploited in Targeted Android Attacks

Mar 3, 2026 10:47 PM

Tags: android, attack, cve, exploit, flaw, spyware, threat, zero-day

The exploitation activity against CVE-2026-21385, a high-severity memory corruption flaw, could be tied to commercial spyware or nation-state threat groups. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/qualcomm-zero-day-exploited-targeted-android-attacks
Neu gekauft, schon infiziert: Diese Android-Tablets kommen ab Werk mit Malware

Mar 3, 2026 4:46 PM

Tags: android, malware

First seen on t3n.de Jump to article: t3n.de/news/neu-gekauft-schon-infiziert-diese-android-tablets-kommen-ab-werk-mit-malware-1731715/
Google Expands AI Scam Protection to Samsung Galaxy S26

Mar 3, 2026 3:47 PM

Tags: ai, android, detection, fraud, google, scam

Google expands Gemini-powered scam detection to Samsung Galaxy S26 and more Android devices, bringing on-device AI fraud protection to calls and messages. The post Google Expands AI Scam Protection to Samsung Galaxy S26 appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-google-gemini-scam-detection-android-samsung-expansion/
Android devices hit by exploited Qualcomm flaw CVE-2026-21385

Mar 3, 2026 12:47 PM

Tags: android, cve, exploit, flaw, google, open-source, vulnerability

Google confirms that the Qualcomm Android vulnerability CVE-2026-21385 was exploited in real-world attacks. Google has confirmed that CVE-2026-21385 (CVSS score of 7.8), a high-severity vulnerability affecting an open-source Qualcomm component used in Android devices, has been actively exploited. >>There are indications that CVE-2026-21385 may be under limited, targeted exploitation.<< reads Google's advisory. The flaw is…
Android’s March 2026 security patch fixes over 100 flaws, one under targeted exploitation

Mar 3, 2026 11:46 AM

Tags: android, cve, exploit, flaw, update, vulnerability

The Android March 2026 security patch addresses vulnerabilities across dozens of components and includes one CVE confirmed under active exploitation. Devices running a patch … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/03/android-march-2026-security-patch-cve-2026-21385/
Gefährliche Sicherheitslücke: Angriffe auf Android-Nutzer beobachtet

Mar 3, 2026 11:46 AM

Tags: android, bug, cyberattack

Eine gefährliche Sicherheitslücke in einer Grafikkomponente von Qualcomm wird aktiv ausgenutzt. Android-Nutzer sollten so bald wie möglich updaten. First seen on golem.de Jump to article: www.golem.de/news/gefaehrliche-sicherheitsluecke-angriffe-auf-android-nutzer-beobachtet-2603-206025.html
Android gets patches for Qualcomm zero-day exploited in attacks

Mar 3, 2026 9:47 AM

Tags: android, attack, exploit, flaw, google, update, vulnerability, zero-day

Google has released security updates to patch 129 Android security vulnerabilities, including an actively exploited zero-day flaw in a Qualcomm display component. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-patches-android-zero-day-actively-exploited-in-attacks/
Google Confirms CVE-2026-21385 in Qualcomm Android Component Exploited

Mar 3, 2026 9:47 AM

Tags: advisory, android, cve, data, exploit, flaw, google, open-source, vulnerability

Google on Monday disclosed that a high-severity security flaw impacting an open-source Qualcomm component used in Android devices has been exploited in the wild.The vulnerability in question is CVE-2026-21385 (CVSS score: 7.8), a buffer over-read in the Graphics component.”Memory corruption when adding user-supplied data without checking available buffer space,” Qualcomm said in an advisory, First…
Android Security Update Fixes 129 Flaws and Tackles Actively Exploited Zero-Day Flaw

Mar 3, 2026 7:47 AM

Tags: android, cyber, exploit, flaw, google, update, vulnerability, zero-day

Google has rolled out the highly anticipated March 2026 Android Security Bulletin, delivering critical fixes for 129 security vulnerabilities across the Android ecosystem. This massive update represents one of the highest numbers of patches issued in a single month. The rollout is structured into two distinct security patch levels, 2026-03-01 and 2026-03-05, giving device manufacturers…
Google addresses actively exploited Qualcomm zero-day in fresh batch of 129 Android vulnerabilities

Mar 2, 2026 11:47 PM

Tags: android, exploit, google, update, vulnerability, zero-day

The company’s latest security update contains the highest number of Android vulnerabilities patched in a single month since April 2018. First seen on cyberscoop.com Jump to article: cyberscoop.com/android-security-update-march-2026/
Meta AI in WhatsApp organizes chats and reopens privacy issues

Mar 2, 2026 5:47 PM

Tags: ai, android, privacy

The trend of integrating AI into digital platforms continues. In the latest Android beta release (2.26.9.4), the company has introduced a feature that allows users to organize … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/02/whatsapp-chats-meta-ai-user-privacy/
UXSS Vulnerability in DuckDuckGo Browser’s AutoConsent JS Bridge Allows Cross-Origin Attacks

Mar 2, 2026 2:47 PM

Tags: android, attack, cyber, flaw, malicious, vulnerability

A critical vulnerability was recently discovered in the DuckDuckGo browser for Android, exposing users to Universal Cross-Site Scripting (UXSS) attacks. This flaw, found in the browser’s AutoConsent JS bridge, allows malicious code from an untrusted source to run on a trusted webpage. Security researcher Dhiraj Mishra reported the vulnerability via HackerOne. It has since been…
Millions at Risk as Android Mental Health Apps Expose Sensitive Data

Feb 27, 2026 5:36 PM

Tags: android, data, flaw, risk

Oversecured flagged 1,575 flaws in 10 Android health apps with 14.7M installs, putting chats, CBT notes, and mood logs at risk, per BleepingComputer. The post Millions at Risk as Android Mental Health Apps Expose Sensitive Data appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-android-mental-health-apps-14-7-million-installs/
Android 17 second beta expands privacy controls for contacts, SMS and local networks

Feb 27, 2026 1:37 PM

Tags: android, api, control, google, network, privacy, update

Google’s second beta of Android 17 continues updates to platform behavior and introduces new APIs focused on protecting sensitive data. Protecting contact and local network … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/27/android-17-beta-privacy-updates/
Android app uses Bluetooth signals to detect nearby smart glasses

Feb 27, 2026 8:37 AM

Tags: android, cctv

Smart glasses with built-in cameras are showing up in more public spaces, and a growing number of people want a way to know when one is nearby. An Android app called Nearby … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/27/nearby-glasses-android-app-detect-smart-glasses/
Hide from Meta’s spyglasses with this new Android app

Feb 27, 2026 1:37 AM

Tags: android

Academic urges users not to harass those suspected of snooping with (sp)eyewear First seen on theregister.com Jump to article: www.theregister.com/2026/02/25/meta_smart_glasses_android_app/
Rogue devs of sideloaded Android apps beg for freedom from Google’s verification regime

Feb 26, 2026 5:37 PM

Tags: android, google, group

37 groups urge the company to drop ID checks for apps distributed outside Play First seen on theregister.com Jump to article: www.theregister.com/2026/02/24/google_android_developer_verification_plan/
APT37 Adds New Capabilities for Air-Gapped Networks

Feb 26, 2026 5:37 PM

Tags: access, android, api, attack, authentication, backdoor, cloud, communications, computer, credentials, data, detection, endpoint, google, government, group, Hardware, infection, infrastructure, injection, Internet, malicious, malware, microsoft, monitoring, network, north-korea, powershell, service, social-engineering, threat, tool, update, windows

IntroductionIn December 2025, Zscaler ThreatLabz discovered a campaign linked to APT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima), which is a DPRK-backed threat group. In this campaign, tracked as Ruby Jumper by ThreatLabz, APT37 uses Windows shortcut (LNK) files to initiate an attack that utilizes a set of newly discovered tools. These tools, RESTLEAF, SNAKEDROPPER, THUMBSBD, and VIRUSTASK,…
APT37 Adds New Capabilities for Air-Gapped Networks

Feb 26, 2026 5:37 PM

Tags: access, android, api, attack, authentication, backdoor, cloud, communications, computer, credentials, data, detection, endpoint, google, government, group, Hardware, infection, infrastructure, injection, Internet, malicious, malware, microsoft, monitoring, network, north-korea, powershell, service, social-engineering, threat, tool, update, windows

IntroductionIn December 2025, Zscaler ThreatLabz discovered a campaign linked to APT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima), which is a DPRK-backed threat group. In this campaign, tracked as Ruby Jumper by ThreatLabz, APT37 uses Windows shortcut (LNK) files to initiate an attack that utilizes a set of newly discovered tools. These tools, RESTLEAF, SNAKEDROPPER, THUMBSBD, and VIRUSTASK,…
ResidentBat Android Malware Grants Belarusian KGB Ongoing Mobile Access

Feb 26, 2026 12:36 PM

Tags: access, android, control, cyber, data, malware, mobile, spyware

ResidentBat is a custom Android spyware implant used by the Belarusian KGB to turn seized smartphones into long”‘lived surveillance platforms against journalists and civil society targets. Operating outside the Play Store ecosystem and requiring hands”‘on installation, it combines deep data collection with remote control features, including the ability to wipe a device on demand. RSF’s…