Liliputing

Caribou app for Android exploits popular cardkey security systems

Caribou is an Android app that does what RFID cardkeys do with locked doors. Caribou remotely connects to a server managing the locks at a supposedly secure location, and exploits the servers’ poor ...

Over 800 Android Apps Targeted in PIN-Stealing Trojan Campaign

Four Android banking malware campaigns are targeting more than 800 apps by abusing overlays, Accessibility permissions, and sideloaded fake apps to steal PINs.

New Google Security Warning For Android 14, 15 And 16 Users—Update Now

Google has confirmed a critical security vulnerability across Android versions 14, 15 and 16 that requires no user interaction or elevated execution privileges.
来自MSN

This new Android exploit can steal everything on your screen - even 2FA codes

Pixnapping could be used to steal private data, including 2FA codes. Side-channel attack abuses Google Android APIs to steal data on display. Flaw is partially patched, although a more complete fix is ...
来自MSN

What is 'pixnapping'? How to protect yourself from the latest Android exploit

Like any other computer, smartphones are prone to some nasty malware, and the latest exploit discovered in Android is equal parts ingenious and horrifying. The last thing most Android users worry ...
Android

Hackers Are Using AI to Build Exploits, Google Security Researchers Find

Google has identified the first zero-day exploit likely developed by artificial intelligence, marking a new era in cyber warfare. The exploit targeted two-factor authentication (2FA) and featured code ...
ITWire

iTWire - Another Android Zero day exploit – what’s new?

"The Google Admin app for Android lets the company administrator manage their company's Gmail for Work accounts from their Android phone. A key file in the Google Admin sandbox is a file holding a ...

Google Android PIN Hackers Target 800 Apps During Attack Surge

More than 800 Google Android apps have been targeted by a surge in PIN-stealing hack attacks. What you need to know.
Android Police

Google patches active Android exploits in its September update

Jay primarily writes news and deals posts for Android Police. Before joining AP, he spent the past several years yammering on about the crazy world of Android for various tech outlets. Besides ...
Android

Google just fixed an Android zero-day exploit used by Serbian authorities

According to the report, Cellebrite, an Israeli-based digital forensics company, exploited the flaw as part of an Android zero-day attack. The exploit targets Android USB drivers, making billions of ...
Ars Technica

Serbian student’s Android phone compromised by exploit from Cellebrite

Amnesty International on Friday said it determined that a zero-day exploit sold by controversial exploit vendor Cellebrite was used to compromise the phone of a Serbian student who had been critical ...