Tag: android
-
Threat Actors Exploit Malware Loaders to Circumvent Android 13+ Accessibility Safeguards
Threat actors have successfully adapted to Google’s stringent accessibility restrictions introduced in Android 13 and later versions. These safeguards, rolled out in May 2022, were designed to prevent malicious applications from abusing accessibility services by blocking such access for sideloaded apps. However, cybercriminals have found ways to bypass these protections, leveraging sophisticated malware loaders and…
-
Android chipmaker Qualcomm fixes three zero-days exploited by hackers
Google’s Threat Analysis Group, which investigates government-backed hacks, was credited with the discovery of the zero-days. First seen on techcrunch.com Jump to article: techcrunch.com/2025/06/03/phone-chipmaker-qualcomm-fixes-three-zero-days-exploited-by-hackers/
-
Google Unveils Gemini Nano for On-Device AI in Android Apps
Gemini Nano APIs empower Android developers with on-device AI features like summarization, proofreading, and enhanced privacy. Get started today! First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/06/google-unveils-gemini-nano-for-on-device-ai-in-android-apps/
-
New Crocodilus Malware Grants Full Control Over Android Devices
The Mobile Threat Intelligence (MTI) team identified a formidable new player in the mobile malware landscape: Crocodilus, an Android banking Trojan designed for device takeover. Initially observed in test campaigns with limited live instances, this malware has rapidly evolved, demonstrating a surge in active campaigns and sophisticated development. A Rising Threat in the Android Ecosystem…
-
Meta pauses mobile port tracking tech on Android after researchers cry foul
Zuckercorp and Yandex used localhost loophole to tie browser data to app users, say boffins First seen on theregister.com Jump to article: www.theregister.com/2025/06/03/meta_pauses_android_tracking_tech/
-
Researchers: Meta and Yandex Broke Android Privacy
Web-to-App Pipeline Uses Meta Pixel and Yandex Metrica. American social media giant Meta and Russian counterpart Yandex each found methods to break through privacy protections enabled by Android users, say academics in newly disclosed research. A Meta spokesperson in a prepared statement said it stopped the tracking upon becoming aware of the concerns. First seen…
-
‘Crocodilus’ Sharpens Its Teeth on Android Users
The data-stealing malware initially targeted users in Turkey but has since evolved into a global threat. First seen on darkreading.com Jump to article: www.darkreading.com/mobile-security/crocodilus-sharpens-teeth-android-users
-
Google addresses 34 high-severity vulnerabilities in June’s Android security update
The most serious flaw in the monthly security update affects the Android system and could be exploited to achieve local escalation of privilege, the company said. First seen on cyberscoop.com Jump to article: cyberscoop.com/android-security-update-june-2025/
-
Umgehung des Sandboxings: Meta und Yandex de-anonymisieren Android-Nutzer
Tags: androidSicherheitsforscher decken eine Methode auf, mit der Meta und Yandex flüchtige Web-Identifikatoren in dauerhafte Nutzeridentitäten umgewandelt haben. First seen on golem.de Jump to article: www.golem.de/news/umgehung-des-sandboxings-meta-und-yandex-de-anonymisieren-android-nutzer-2506-196807.html
-
Android banking trojan Crocodilus rapidly evolves and goes global
A new Android banking trojan called Crocodilus is being used in a growing number of campaigns targeting users in Europe and South America. Crocodilus is a recently discovered Android banking trojan that is quickly gaining ground. What began as small test campaigns has now grown into full-blown attacks targeting users across Europe and South America.…
-
Android Security Update Addresses High-Severity Privilege Escalation Flaws
The Android Security Bulletin for June 2025, published on June 2, details a series of high-severity vulnerabilities affecting a wide range of Android devices. Security patch levels of 2025-06-05 or later address all reported issues, with source code patches set for imminent release to the Android Open Source Project (AOSP) repository. The most critical vulnerability…
-
Meta and Yandex are de-anonymizing Android users’ web browsing identifiers
Tags: androidAbuse allows Meta and Yandex to attach persistent identifiers to detailed browsing histories. First seen on arstechnica.com Jump to article: arstechnica.com/security/2025/06/headline-to-come/
-
Android malware Crocodilus adds fake contacts to spoof trusted callers
The latest version of the ‘Crocodilus’ Android malware has introduced a new mechanism that adds a fake contact on the infected device’s contact list to deceive victims. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/android-malware-crocodilus-adds-fake-contacts-to-spoof-trusted-callers/
-
Android Trojan Crocodilus Now Active in 8 Countries, Targeting Banks and Crypto Wallets
A growing number of malicious campaigns have leveraged a recently discovered Android banking trojan called Crocodilus to target users in Europe and South America.The malware, according to a new report published by ThreatFabric, has also adopted improved obfuscation techniques to hinder analysis and detection, and includes the ability to create new contacts in the victim’s…
-
OffensiveCon25 Fighting Cavities: Securing Android Bluetooth By Red Teaming
Author/Presenter: Jeong Wook Oh, Rishika Hooda and Xuan Xing Our sincere appreciation to OffensiveCon by Binary Gecko, and the Presenters/Authors for publishing their outstanding OffensiveCon 2025 video content. Originating from the conference’s events located at the Hilton Berlin; and via the organizations YouTube channel. Thanks and a Tip O’ The Hat to Verification Labs ::…
-
Qualcomm Fixes Three Adreno GPU Flaws Abused in Android Attacks
Qualcomm issued patches for three zero-day vulnerabilities in its Adreno GPUs that Google threat intelligence researchers said were being exploited in “limited, targeted” attacks against Android devices. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/06/qualcomm-fixes-three-adreno-gpu-flaws-abused-in-android-attacks/
-
Qualcomm fixed three zero-days exploited in limited, targeted attacks
Qualcomm addressed three zero-day vulnerabilities that, according to the company, have been exploited in limited, targeted attacks in the wild. Qualcomm has shipped security updates to address three zero-day vulnerabilities that it said have been exploited in limited, targeted attacks in the wild. Google Android Security team reported the three issues, tracked as CVE-2025-21479, CVE-2025-21480,…
-
Preinstalled Apps on Ulefone, Krüger&Matz Phones Let Any App Reset Device, Steal PIN
Three security vulnerabilities have been disclosed in preloaded Android applications on smartphones from Ulefone and Krüger&Matz that could enable any app installed on the device to perform a factory reset and encrypt an application.A brief description of the three flaws is as follows -CVE-2024-13915 (CVSS score: 6.9) – A pre-installed “com.pri.factorytest” application on Ulefone and…
-
Qualcomm Fixes 3 Zero-Days Used in Targeted Android Attacks via Adreno GPU
Qualcomm has shipped security updates to address three zero-day vulnerabilities that it said have been exploited in limited, targeted attacks in the wild.The flaws in question, which were responsibly disclosed to the company by the Google Android Security team, are listed below -CVE-2025-21479 and CVE-2025-21480 (CVSS score: 8.6) – Two incorrect authorization vulnerabilities in the…
-
New ChoiceJacking Exploit Targets Android and iOS via Infected Charging Ports
A team of cybersecurity researchers from the Institute of Information Security and A-SIT Secure Information Technology Centre Austria has unveiled a new class of USB-based attacks on mobile devices, dubbed “ChoiceJacking.” This attack revives and surpasses the notorious “juice jacking” threat from a decade ago, which prompted Apple and Google to introduce user confirmation prompts…
-
Novel GhostSpy Android malware examined
First seen on scworld.com Jump to article: www.scworld.com/brief/novel-ghostspy-android-malware-examined
-
Zanubis Android Malware Harvests Banking Credentials and Executes Remote Commands
The Zanubis Android banking Trojan has evolved into a highly sophisticated threat, initially targeting financial institutions in Peru before expanding its scope to virtual cards and cryptocurrency wallets. This malware, known for impersonating legitimate Peruvian Android apps, tricks users into granting accessibility permissions, thereby enabling extensive data theft and remote control capabilities. Evolution of a…
-
Your Mobile Apps May Not Be as Secure as You Think”¦ FireTail Blog
Tags: access, ai, android, api, authentication, banking, best-practice, cloud, control, cyber, cybersecurity, data, encryption, finance, leak, mobile, password, phone, risk, threat, vulnerabilityMay 28, 2025 – Lina Romero – Your Mobile Apps May Not Be as Secure as You Think”¦ Excerpt: Cybersecurity risks are too close for comfort. Recent data from the Global Mobile Threat Report reveals that our mobile phone applications are most likely exposing our data due to insecure practices such as API key hardcoding.…
-
New Android Malware GhostSpy Grants Attackers Full Control Over Infected Devices
A chilling new Android malware, dubbed GhostSpy, has emerged as a significant threat to mobile security, according to a detailed report by CYFIRMA. This high-risk malware employs advanced evasion, persistence, and surveillance techniques to seize complete control over infected devices. With capabilities ranging from keylogging to bypassing banking app protections, GhostSpy poses a severe risk…
-
Google backs down after locking out Nextcloud Files app
Search giant to restore critical Android permission after user outcry First seen on theregister.com Jump to article: www.theregister.com/2025/05/17/google_nextcloud_android_permission/
-
How Google is Enhancing Security for Android, ‘The World’s Most Popular OS’
The Android operating system, currently installed on billions of devices across the globe, is receiving some significant security enhancements. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-google-android-16-security-upgrades/
-
Google strengthens secure enterprise access from BYOD Android devices
Google has introduced Device Trust from Android Enterprise, a new solution for making sure that private Android devices used for work are secure enough to access corporate … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/05/14/device-trust-from-android-enterprise-secure-access/
-
Android Enterprise Launches Device Trust For Enhanced Security
Android Enterprise introduced Device Trust to enhance mobile security on Android devices First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/android-enterprise-launches-device/