Tag Archives: Android

Kryptowire company specialists conducted automatic analysis of applications that were preinstalled on Android-smartphones, and discovered more than 150 vulnerabilities. Among other permissions, preinstalled programs allow remote change of settings, side code execution and unpermitted audio recording. “In research funded by the US Department of Homeland Security, the Kryptowire found apps …

Security researchers from Purdue and Iowa Universities (USA) discovered vulnerabilities in several popular Android phones, exploiting which an attacker through the accessories could gain access to the firmware of the radio module (baseband) and thus track their users. Criminals can trick vulnerable phones into revealing unique identifiers, such as IMEI …

Facebook sued the Israeli company NSO Group, which develops and sells spyware solutions and the so-called “legal malware”. NSO Group was founded in 2010 and since then has been developing various legal malware, which, along with exploits for various 0-days, it sells to governments and intelligence agencies around the world. …

Grant Hernandez, Ph.D. in science at the University of Florida’s Cybersecurity Institute, has published a PoC exploit for Android’s zero-day vulnerability that allows gaining superuser rights and take control of the device. At the beginning of October 2019, experts at the Google Project Zero team reported an unpleasant bug in …

In the Android version of the Signal secure messenger has been identified a logical error that allows spying on users. With the vulnerability, criminals can initiate a call and automatically answer it without the consent of the user. In other words, with the help of a bug, you can turn …

A team of researchers from OPPO ZIWU Cyber Security Lab in Shenzhen, China University of Hong Kong and Singapore University of Management discovered 8 vulnerabilities in the Android VoIP components. Interestingly, to date, information security experts have studied Voice-over-IP (VoIP) only in the context of equipment, servers, and mobile applications, …

Specialists of the Google Project Zero team released information (as well as a PoC code) about the 0-day vulnerability in the Android operating system, which is already actively used by attackers in real attacks. The 0-day vulnerability in Android threatens many popular smartphones. It is noteworthy that this vulnerability was …

Speaking at the Virus Bulletin conference in London, researchers from the Czech Technical University, National University of Cuyo (Argentina) and Avast told how they managed to find one of the largest Android botnets based on a banking trojan. The Geost botnet, they said, is now interested in 5 banks in …

Sophos researchers discovered fraudulent applications on Google Play that make money by deceiving hundreds of dollars from victims’ accounts. Attackers lure the audience with a free trial period, after which they deduct money from the user, even if he deleted the program. Experts have counted at least 15 such applications …

Information security specialist Shitesh Sachan told The Hacker News about a problem he recently discovered in the WhatsApp messenger: it does not delete files sent to iPhone users. The problem is very similar to a bug that researcher Dhiraj Mishra recently discovered on Telegram. So, Sachan noticed that even if …