Tag: android
-
Android and Windows gamers worldwide potentially affected by bug in Unity game engine
An advisory from Unity, which makes the software behind dozens of popular games, warns developers to patch a vulnerability that could allow an attacker to execute code via an affected app. First seen on therecord.media Jump to article: therecord.media/unity-game-engine-vulnerability-android-windows-linux-macos
-
Unity Warns Developers of Security Vulnerability Affecting Games on Android, Windows, and Linux Platforms
A recently disclosed security vulnerability in Unity has prompted security updates and, in some cases, game removals across platforms like Steam. The issue affects Unity versions 2017.1 and later, spanning a wide range of games and applications released over the last several years. According to Unity, this Unity vulnerability impacts software built for Android, Windows, macOS,…
-
Nach Kritik von F-Droid: Google verteidigt Maßnahmen gegen bisheriges Sideloading
Künftig lässt sich keine Android-App mehr per Sideloading installieren, ohne dass Google davon weiß. Das bringt dem Unternehmen mehr Macht. First seen on golem.de Jump to article: www.golem.de/news/nach-kritik-von-f-droid-google-verteidigt-massnahmen-gegen-bisheriges-sideloading-2510-200810.html
-
Android Not Reading SD Card? Here’s How to Fix it
As we all know, the SD card usually stores your multimedia and important mobile files. When Android suddenly… First seen on hackread.com Jump to article: hackread.com/android-not-reading-sd-card-heres-how-to-fix-it/
-
New Study Warns Several Free iOS and Android VPN Apps Leak Data
A Zimperium zLabs analysis of 800 free Android and iOS VPN apps exposes critical security flaws, including the Heartbleed bug, excessive system permissions, and non-transparent data practices. Learn how these ‘privacy’ tools are actually major security risks, especially for BYOD environments. First seen on hackread.com Jump to article: hackread.com/studyfree-ios-android-vpn-apps-leak-data/
-
Hundreds of Free VPN Apps Expose Android and iOS Users’ Personal Data
Virtual Private Networks (VPNs) are trusted by millions to protect privacy, secure communications, and enable remote access on their mobile devices. But what if the very apps designed to safeguard your data are riddled with dangerous security flaws that expose the exact information they promise to protect? A comprehensive security and privacy analysis by Zimperium…
-
Android spyware disguised as legitimate messaging apps targets UAE victims, researchers reveal
The campaign involves apps posing as Signal and the defunct ToTok, according to ESET. First seen on cyberscoop.com Jump to article: cyberscoop.com/android-spyware-disguised-as-legitimate-messaging-apps-targets-uae-victims-researchers-reveal/
-
Android spyware campaigns impersonate Signal and ToTok messengers
Two new spyware campaigns that researchers call ProSpy and ToSpy lured Android users with fake upgrades or plugins for the Signal and ToTok messaging apps to steal sensitive data. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/android-spyware-campaigns-impersonate-signal-and-totok-messengers/
-
ProSpy and ToSpy: New spyware families impersonating secure messaging apps
ESET researchers have found two Android spyware campaigns aimed at people looking for secure messaging apps such as Signal and ToTok. The attackers spread the spyware through … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/10/02/android-spyware-signal-totok/
-
Android Spyware in the UAE Masquerades as … Spyware
In a clever, messed-up twist on brand impersonation, attackers are passing off their spyware as a notorious UAE government surveillance app. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/android-spyware-uae-spyware
-
Android malware uses VNC to give attackers hands-on access
A new Android banking and remote access trojan (RAT) dubbed Klopatra disguised as an IPTV and VPN app has infected more than 3,000 devices across Europe. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/android-malware-uses-vnc-to-give-attackers-hands-on-access/
-
F-Droid project threatened by Google’s new dev registration rules
F-Droid is warning that the project could reach an end due to Google’s new requirements for all Android developers to verify their identity. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/f-droid-project-threatened-by-googles-new-dev-registration-rules/
-
New Android RAT Klopatra Targets Financial Data
New Android RAT Klopatra is targeting financial institutions using advanced evasion techniques First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/android-rat-klopatra-targets/
-
New Smish: New York Department of Revenue
As I was visiting SmishTank to report the most recent SMish that I had received (an iMessage from a +27 South African telephone number claiming to be from ParkMobile) I noticed there had been many recent submissions from the New York Department of Revenue. SmishTank is operated by Professor Muhammad Lutfor Rahman, a colleague of mine…
-
New Android Banking Trojan Uses Hidden VNC for Full Remote Control of Devices
In late August 2025, Cleafy’s Threat Intelligence team uncovered Klopatra, a new, highly sophisticated Android banking trojan and Remote Access Trojan (RAT) that grants attackers full control of compromised devices and facilitates large-scale financial fraud. Active campaigns in Spain and Italy have already infected over 3,000 devices, targeting users of major financial institutions and draining…
-
New Android Trojan “Datzbro” Tricking Elderly with AI-Generated Facebook Travel Events
Cybersecurity researchers have flagged a previously undocumented Android banking trojan called Datzbro that can conduct device takeover (DTO) attacks and perform fraudulent transactions by preying on the elderly.Dutch mobile security company ThreatFabric said it discovered the campaign in August 2025 after users in Australia reported scammers managing Facebook groups promoting “active senior First seen on…
-
F-Droid-Projekt durch Google-Pläne in Gefahr
Google hegt Pläne, sein Android so anzupassen, dass alle Entwickler von Android-Apps sich registrieren müssen. Andernfalls soll die App nicht mehr ausgeführt werden können. Das F-Droid-Projekt schlägt nun Alarm, weil man davon ausgeht, dass dies das Aus bedeutet. Android-App-Entwickler-Registrierung: Worum … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/09/30/f-droid-projekt-durch-google-plaene-in-gefahr/
-
Your budget Android phone might be spying on you
Researchers have found that many low-cost Android devices come with pre-installed apps that have high-level access to the system. Unlike apps from the Google Play Store, many … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/09/30/low-cost-android-devices-security-risks/
-
Google’s dev registration plan ‘will end the F-Droid project’
Open source Android app store cannot exist if Google’s plans go ahead, says F-Droid board member First seen on theregister.com Jump to article: www.theregister.com/2025/09/29/googles_dev_registration_plan_will/
-
Banking Trojans Targeting Android Users Disguise as Government and Trusted Payment Apps
Since August 2024, a financially motivated threat group has been targeting Android users in Indonesia and Vietnam with banking trojans disguised as official government identity and payment applications. By employing elaborate download mechanisms, reusing infrastructure, and leveraging template-based spoofed sites, the operators have used a coordinated campaign to evade detection and steal user credentials. The…
-
Banking Trojans Targeting Android Users Disguise as Government and Trusted Payment Apps
Since August 2024, a financially motivated threat group has been targeting Android users in Indonesia and Vietnam with banking trojans disguised as official government identity and payment applications. By employing elaborate download mechanisms, reusing infrastructure, and leveraging template-based spoofed sites, the operators have used a coordinated campaign to evade detection and steal user credentials. The…
-
WhatsApp adds message translation to iPhone and Android apps
WhatsApp has started rolling out a new translation feature that enables Android and iPhone users to translate messages in chats, groups, and channel updates. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/whatsapp-adds-message-translation-to-iphone-and-android-apps/
-
OnePlus leaves researchers on read over Android bug that exposes texts
Rapid7 warns flaw could let any app peek at your SMS, but smartphone vendor won’t pick up First seen on theregister.com Jump to article: www.theregister.com/2025/09/23/rapid7_oneplus_android_bug/
-
Alle Android-Versionen betroffen: Samsung patcht gefährliche Whatsapp-Sicherheitslücke
First seen on t3n.de Jump to article: t3n.de/news/android-samsung-sicherheitsluecke-whatsapp-1707544/
-
1 in 3 Android Apps Leak Sensitive Data
One third of Android and over half iOS apps shown to be leaking insecure APIs and hardcoded secrets First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/android-apps-leak-sensitive-data/
-
Millionenfach installiert: 224 Malware-nachladende Apps bei Google Play entdeckt
Die Android-Malware hat täglich Klicks auf Milliarden versteckter Werbeanzeigen ausgeführt – zur Bereicherung der Angreifer. First seen on golem.de Jump to article: www.golem.de/news/millionenfach-installiert-224-malware-nachladende-apps-bei-google-play-entdeckt-2509-200171.html
-
Google Play Flooded With 224 Malicious Apps, 38 Million Downloads Deliver Malware
A global ad fraud and click fraud operation, dubbed SlopAds, comprising 224 Android apps that collectively amassed more than 38 million downloads across 228 countries and territories. Under the guise of AI-themed utilities, these apps employ advanced obfuscation techniques”, such as steganography and hidden WebViews”, to deliver a fraud payload that generates billions of ad…
-
Google nukes 224 Android malware apps behind massive ad fraud campaign
A massive Android ad fraud operation dubbed “SlopAds” was disrupted after 224 malicious applications on Google Play were used to generate 2.3 billion ad requests per day. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-nukes-224-android-malware-apps-behind-massive-ad-fraud-campaign/
-
SlopAds Fraud Ring Exploits 224 Android Apps to Drive 2.3 Billion Daily Ad Bids
A massive ad fraud and click fraud operation dubbed SlopAds ran a cluster of 224 apps, collectively attracting 38 million downloads across 228 countries and territories.”These apps deliver their fraud payload using steganography and create hidden WebViews to navigate to threat actor-owned cashout sites, generating fraudulent ad impressions and clicks,” HUMAN’s Satori Threat Intelligence and…

