Google fixed a critical zero-click RCE vulnerability (CVE-2023-40088) with the release of the December 2023 Android security updates. Google December 2023 Android security updates addressed 85 vulnerabilities, including a critical zero-click remote code execution (RCE) flaw tracked as CVE-2023-40088. The vulnerability resides in Android’s System component, it doesn’t require additional privileges to be triggered. An […]
...moreSummary
Total Articles Found: 15
Top sources:
Top Keywords:
- Android: 15
- Mobile: 5
- hacking news: 5
- Vulnerabilities: 5
- Security Affairs: 4
Top Authors
Top Articles:
- Hackers Can Manipulate Media Files You Receive Via WhatsApp and Telegram
- New Attack Lets Android Apps Capture Loudspeaker Data Without Any Permission
- New Android Spyware Created by Russian Defense Contractor Found in the Wild
- Android users: watch out for this fake address bar trick
- Google Warns of Critical Android Remote Code Execution Bug
- Android-Based Sony Smart-TVs Open to Image Pilfering
- Two thirds of Android antimalware apps are ineffective or unreliable
- Google Sets Record High in Bug-Bounty Payouts
- High-Severity Android RCE Flaw Fixed in August Security Update
- New strain of Cerberus Android banking trojan can steal Google Authenticator codes
Google fixed critical zero-click RCE in Android
Published: 2023-12-05 08:02:58
Popularity: 19
Author: Pierluigi Paganini
Keywords:
Android Security Update Patches Kernel Vulnerability Exploited by Spyware Vendor
Published: 2023-05-05 08:33:00
Popularity: 10
Author: Eduard Kovacs
Keywords:
Google’s latest Android security updates patch over 40 vulnerabilities, including CVE-2023-0266, a kernel flaw exploited as a zero-day by a spyware vendor. The post Android Security Update Patches Kernel Vulnerability Exploited by Spyware Vendor appeared first on SecurityWeek.
...moreGoogle addresses actively exploited Android flaw in the kernel
Published: 2022-05-05 19:47:00
Popularity: 12
Author: Pierluigi Paganini
Keywords:
Google released the May security bulletin for Android, 2022-05-05 security patch level, which fixed an actively exploited Linux kernel flaw. Google has released the second part of the May Security Bulletin for Android, which includes a fix for an actively exploited Linux kernel vulnerability tracked as CVE-2021-22600. The CVE-2021-22600 is a privilege escalation issue that […] The post Google addresses actively exploited Android flaw in the kernel appeared first on Security Affairs.
...moreGoogle addresses 4 zero-day flaws in Android exploited in the wild
Published: 2021-05-19 18:39:44
Popularity: None
Author: Pierluigi Paganini
Keywords:
Google released Android Security Bulletin for May 2021 security updates that address four zero-day vulnerabilities that were exploited in the wild. Android Security Bulletin for May 2021 security updates address four zero-day vulnerabilities, tracked as CVE-2021-1905, CVE-2021-1906, CVE-2021-28663 and CVE-2021-28664, that were actively exploited in the wild. The four vulnerabilities impact Qualcomm GPU and Arm […] The post Google addresses 4 zero-day flaws in Android exploited in the wild appeared first on Security Affairs.
...moreFinding the Location of Telegram Users
Published: 2021-01-14 12:08:27
Popularity: 46
Author: Bruce Schneier
Keywords:
LLM Says: ""Tracking down""
Security researcher Ahmed Hassan has shown that spoofing the Android’s “People Nearby” feature allows him to pinpoint the physical location of Telegram users: Using readily available software and a rooted Android device, he’s able to spoof the location his device reports to Telegram servers. By using just three different locations and measuring the corresponding distance reported by People Nearby, he is able to pinpoint a user’s precise location. […] A proof-of-concept video the researcher sent to Telegram showed how he could discern the address of a People Nearby user when he used a free GPS spoofing app to make his phone report just three different locations. He then drew a circle around each of the three locations with a radius of the distance reported by Telegram. The user’s precise location was where all three intersected...
...moreGoogle Warns of Critical Android Remote Code Execution Bug
Published: 2021-01-05 20:21:40
Popularity: 394
Author: Lindsey O'Donnell
Keywords:
Google's Android security update addressed 43 bugs overall affecting Android handsets, including Samsung phones.
...moreHigh-Severity Android RCE Flaw Fixed in August Security Update
Published: 2020-08-05 16:14:26
Popularity: 124
Author: Lindsey O'Donnell
Keywords:
Google addressed high-severity and critical flaws tied to 54 CVEs in this month's Android security bulletin.
...moreNew strain of Cerberus Android banking trojan can steal Google Authenticator codes
Published: 2020-02-27 13:21:26
Popularity: 74
Author: Pierluigi Paganini
Keywords:
LLM Says: "Trojan alert"
Experts found a new version of the Cerberus Android banking trojan that can steal one-time codes generated by the Google Authenticator app and bypass 2FA. Security researchers from ThreatFabric warn of a new Android malware strain can now steal one-time passcodes (OTP) generated through Google Authenticator that is used as part of 2FA to protect online […] The post New strain of Cerberus Android banking trojan can steal Google Authenticator codes appeared first on Security Affairs.
...moreGoogle Sets Record High in Bug-Bounty Payouts
Published: 2020-01-29 19:56:14
Popularity: 135
Author: Tara Seals
Keywords:
After a year of big changes, white hats reaped more from Google's programs than ever before.
...moreNew Android Spyware Created by Russian Defense Contractor Found in the Wild
Published: 2019-07-25 07:16:16
Popularity: 3183
Author: noreply@blogger.com (Swati Khandelwal)
Keywords:
Cybersecurity researchers have uncovered a new piece of mobile surveillance malware believed to be developed by a Russian defense contractor that has been sanctioned for interfering with the 2016 U.S. presidential election. Dubbed Monokle, the mobile remote-access trojan has been actively targeting Android phones since at least March 2016 and is primarily being used in highly targeted attacks on
...moreHackers Can Manipulate Media Files You Receive Via WhatsApp and Telegram
Published: 2019-07-16 09:31:05
Popularity: 9509
Author: noreply@blogger.com (Unknown)
Keywords:
If you think that the media files you receive on your end-to-end encrypted secure messaging apps can not be tampered with, you need to think again. Security researchers at Symantec yesterday demonstrated multiple interesting attack scenarios against WhatsApp and Telegram Android apps, which could allow malicious actors to spread fake news or scam users into sending payments to wrong accounts.
...moreNew Attack Lets Android Apps Capture Loudspeaker Data Without Any Permission
Published: 2019-07-17 10:52:05
Popularity: 7377
Author: noreply@blogger.com (Swati Khandelwal)
Keywords:
Earlier this month, The Hacker News covered a story on research revealing how over 1300 Android apps are collecting sensitive data even when users have explicitly denied the required permissions. The research was primarily focused on how app developers abuse multiple ways around to collect location data, phone identifiers, and MAC addresses of their users by exploiting both covert and side
...moreAndroid users: watch out for this fake address bar trick
Published: 2019-04-30 14:38:05
Popularity: 1221
Author: Danny Bradbury
Keywords:
When is an address bar not an address bar? When it's a fake.
...moreAndroid-Based Sony Smart-TVs Open to Image Pilfering
Published: 2019-04-25 21:13:31
Popularity: 304
Author: Tara Seals
Keywords:
A pair of bugs would allow attackers to compromise the WiFi password of a TV and the multimedia stored inside it.
...moreTwo thirds of Android antimalware apps are ineffective or unreliable
Published: 2019-03-14 12:12:54
Popularity: 236
Author: Zeljka Zorz
Keywords:
Choosing an effective Android antimalware app is a shot in the dark for many users and they may end up in more danger of malicious apps, not less. In fact, as the results of AV-Comparatives’ latest test of Android antimalware apps has shown, only 80 of the 250 security apps tested detected over 30 percent of malicious apps and had no false positives, and only 50 achieved detection rates from 90 to 100 percent. The … More → The post Two thirds of Android antimalware apps are ineffective or unreliable appeared first on Help Net Security.
...more