A team of academic researchers has uncovered a new Android security exploit that raises a lot of questions about the platform’s permission system. The technique, named TapTrap, uses user interface ...

Caribou is an Android app that does what RFID cardkeys do with locked doors. Caribou remotely connects to a server managing the locks at a supposedly secure location, and exploits the servers’ poor ...

Pixnapping could be used to steal private data, including 2FA codes. Side-channel attack abuses Google Android APIs to steal data on display. Flaw is partially patched, although a more complete fix is ...

PCWorld reports that cybercriminals are distributing ‘Massiv’ malware through fake IPTV streaming apps that appear functional but primarily serve to steal banking credentials. This Android malware can ...

Oversecured flagged 1,575 flaws in 10 Android health apps with 14.7M installs, putting chats, CBT notes, and mood logs at risk, per BleepingComputer.

On March 26, Symantec discovered 11 Android applications that were all made to appear like they were legitimate apps related to tracking cases in the Covid-19 pandemic, but which were in fact secretly ...

Android Malware Exploits a Microsoft-Related Security Blind Spot to Avoid Detection Your email has been sent .NET MAUI’s hidden danger Bypassing security Malware’s evolving tactics The blob advantage ...

Google’s September 2025 Android security bulletin is out, tackling several high-risk vulnerabilities, including four labeled critical. As per the company's latest security bulletin, the September 2025 ...

A newly-uncovered malware targeting the Android operating system seems to exploit Google’s Gemini GenAI tool to help it maintain persistence.

Amnesty International on Friday said it determined that a zero-day exploit sold by controversial exploit vendor Cellebrite was used to compromise the phone of a Serbian student who had been critical ...

According to the report, Cellebrite, an Israeli-based digital forensics company, exploited the flaw as part of an Android zero-day attack. The exploit targets Android USB drivers, making billions of ...