Annoying Mode

Summary

Total Articles Found: 15

Top sources:

Top Keywords:

Top Authors

Pierluigi Paganini: 4
Lindsey O'Donnell: 2
Tara Seals: 2
noreply@blogger.com (Swati Khandelwal): 2
Eduard Kovacs: 1

Top Articles:

Hackers Can Manipulate Media Files You Receive Via WhatsApp and Telegram
New Attack Lets Android Apps Capture Loudspeaker Data Without Any Permission
New Android Spyware Created by Russian Defense Contractor Found in the Wild
Android users: watch out for this fake address bar trick
Google Warns of Critical Android Remote Code Execution Bug
Android-Based Sony Smart-TVs Open to Image Pilfering
Two thirds of Android antimalware apps are ineffective or unreliable
Google Sets Record High in Bug-Bounty Payouts
High-Severity Android RCE Flaw Fixed in August Security Update
New strain of Cerberus Android banking trojan can steal Google Authenticator codes

Google fixed critical zero-click RCE in Android

Published: 2023-12-05 08:02:58

Popularity: 19

Author: Pierluigi Paganini

Keywords:

information security news

IT Information Security

Google fixed a critical zero-click RCE vulnerability (CVE-2023-40088) with the release of the December 2023 Android security updates. Google December 2023 Android security updates addressed 85 vulnerabilities, including a critical zero-click remote code execution (RCE) flaw tracked as CVE-2023-40088. The vulnerability resides in Android’s System component, it doesn’t require additional privileges to be triggered. An […]

...more

Android Security Update Patches Kernel Vulnerability Exploited by Spyware Vendor

Published: 2023-05-05 08:33:00

Popularity: 10

Author: Eduard Kovacs

Keywords:

Google’s latest Android security updates patch over 40 vulnerabilities, including CVE-2023-0266, a kernel flaw exploited as a zero-day by a spyware vendor. The post Android Security Update Patches Kernel Vulnerability Exploited by Spyware Vendor appeared first on SecurityWeek.

...more

Google addresses actively exploited Android flaw in the kernel

Published: 2022-05-05 19:47:00

Popularity: 12

Author: Pierluigi Paganini

Keywords:

information security news

Google released the May security bulletin for Android, 2022-05-05 security patch level, which fixed an actively exploited Linux kernel flaw. Google has released the second part of the May Security Bulletin for Android, which includes a fix for an actively exploited Linux kernel vulnerability tracked as CVE-2021-22600. The CVE-2021-22600 is a privilege escalation issue that […] The post Google addresses actively exploited Android flaw in the kernel appeared first on Security Affairs.

...more

Google addresses 4 zero-day flaws in Android exploited in the wild

Published: 2021-05-19 18:39:44

Popularity: None

Author: Pierluigi Paganini

Keywords:

information security news

Google released Android Security Bulletin for May 2021 security updates that address four zero-day vulnerabilities that were exploited in the wild. Android Security Bulletin for May 2021 security updates address four zero-day vulnerabilities, tracked as CVE-2021-1905, CVE-2021-1906, CVE-2021-28663 and CVE-2021-28664, that were actively exploited in the wild. The four vulnerabilities impact Qualcomm GPU and Arm […] The post Google addresses 4 zero-day flaws in Android exploited in the wild appeared first on Security Affairs.

...more

Finding the Location of Telegram Users

Published: 2021-01-14 12:08:27

Popularity: 46

Author: Bruce Schneier

Keywords:

🤖: ""Tracking down""

Security researcher Ahmed Hassan has shown that spoofing the Android’s “People Nearby” feature allows him to pinpoint the physical location of Telegram users: Using readily available software and a rooted Android device, he’s able to spoof the location his device reports to Telegram servers. By using just three different locations and measuring the corresponding distance reported by People Nearby, he is able to pinpoint a user’s precise location. […] A proof-of-concept video the researcher sent to Telegram showed how he could discern the address of a People Nearby user when he used a free GPS spoofing app to make his phone report just three different locations. He then drew a circle around each of the three locations with a radius of the distance reported by Telegram. The user’s precise location was where all three intersected...

...more

Google Warns of Critical Android Remote Code Execution Bug

Published: 2021-01-05 20:21:40

Popularity: 394

Author: Lindsey O'Donnell

Keywords:

android security update

remote code execution

Samsung

Google's Android security update addressed 43 bugs overall affecting Android handsets, including Samsung phones.

...more

High-Severity Android RCE Flaw Fixed in August Security Update

Published: 2020-08-05 16:14:26

Popularity: 124

Author: Lindsey O'Donnell

Keywords:

Mobile Security

Vulnerabilities

Android

Android operating system

google

high severity flaw

Qualcomm

RCE

remote code execution

Google addressed high-severity and critical flaws tied to 54 CVEs in this month's Android security bulletin.

...more

New strain of Cerberus Android banking trojan can steal Google Authenticator codes

Published: 2020-02-27 13:21:26

Popularity: 74

Author: Pierluigi Paganini

Keywords:

security affairs news

Security News

Trojan

🤖: "Trojan alert"

Experts found a new version of the Cerberus Android banking trojan that can steal one-time codes generated by the Google Authenticator app and bypass 2FA. Security researchers from ThreatFabric warn of a new Android malware strain can now steal one-time passcodes (OTP) generated through Google Authenticator that is used as part of 2FA to protect online […] The post New strain of Cerberus Android banking trojan can steal Google Authenticator codes appeared first on Security Affairs.

...more

Google Sets Record High in Bug-Bounty Payouts

Published: 2020-01-29 19:56:14

Popularity: 135

Author: Tara Seals

Keywords:

annual reward report card

After a year of big changes, white hats reaped more from Google's programs than ever before.

...more

New Android Spyware Created by Russian Defense Contractor Found in the Wild

Published: 2019-07-25 07:16:16

Popularity: 3183

Author: noreply@blogger.com (Swati Khandelwal)

Keywords:

Cybersecurity researchers have uncovered a new piece of mobile surveillance malware believed to be developed by a Russian defense contractor that has been sanctioned for interfering with the 2016 U.S. presidential election. Dubbed Monokle, the mobile remote-access trojan has been actively targeting Android phones since at least March 2016 and is primarily being used in highly targeted attacks on

...more

Hackers Can Manipulate Media Files You Receive Via WhatsApp and Telegram

Published: 2019-07-16 09:31:05

Popularity: 9509

Author: noreply@blogger.com (Unknown)

Keywords:

If you think that the media files you receive on your end-to-end encrypted secure messaging apps can not be tampered with, you need to think again. Security researchers at Symantec yesterday demonstrated multiple interesting attack scenarios against WhatsApp and Telegram Android apps, which could allow malicious actors to spread fake news or scam users into sending payments to wrong accounts.

...more

New Attack Lets Android Apps Capture Loudspeaker Data Without Any Permission

Published: 2019-07-17 10:52:05

Popularity: 7377

Author: noreply@blogger.com (Swati Khandelwal)

Keywords:

Earlier this month, The Hacker News covered a story on research revealing how over 1300 Android apps are collecting sensitive data even when users have explicitly denied the required permissions. The research was primarily focused on how app developers abuse multiple ways around to collect location data, phone identifiers, and MAC addresses of their users by exploiting both covert and side

...more