6 open source Android apps that prove nobody should pay for subscriptions

If there is no category where the subscription model feels most greedy, it’s password management. Services like 1Password and ...
Bleeping Computer

New Android Pixnapping attack steals MFA codes pixel-by-pixel

A new side-channel attack called Pixnapping enables a malicious Android app with no permissions to extract sensitive data by stealing pixels displayed by applications or websites, and reconstructing ...
ZDNet

This new Android exploit can steal everything on your screen - even 2FA codes

Pixnapping could be used to steal private data, including 2FA codes. Side-channel attack abuses Google Android APIs to steal data on display. Flaw is partially patched, although a more complete fix is ...
Android Authority

Your open-source custom ROM has a dirty secret, and Librephone wants to fix it

Librephone is an effort to reverse engineer proprietary code needed for your phone to run. While projects like LineageOS prioritize open-source code, some binary “blobs” have so far been necessary.
Mashable

New 'Pixnapping' attack lets hackers steal Android chats, 2FA codes in seconds

Pixnapping attacks can put data from your Android device directly in the hands of hackers. Credit: CFOTO/Future Publishing via Getty Images Cybersecurity researchers have discovered a new type of ...
InfoWorld

Self-propagating worm found in marketplaces for Visual Studio Code extensions

Treat this as an immediate security incident, CISOs advised; researchers say it’s one of the most sophisticated supply chain attacks they’ve seen, and it’s spreading. A month after a self-propagating ...
Bleeping Computer

F5 says hackers stole undisclosed BIG-IP flaws, source code

U.S. cybersecurity company F5 disclosed that nation-state hackers breached its systems and stole undisclosed BIG-IP security vulnerabilities and source code. The company states that it first became ...
Wired

A New Attack Lets Hackers Steal 2-Factor Authentication Codes From Android Phones

Android devices are vulnerable to a new attack that can covertly steal two-factor authentication codes, location timelines, and other private data in less than 30 seconds. The new attack, named ...
Android

Google AI Studio Brings 'Vibe Coding': App Creation for Everyone

Google has updated AI Studio with “Vibe Coding,” a workflow that allows users to build and deploy AI applications using natural language prompts. This new system, powered by Gemini, simplifies the ...
Ars Technica

Hackers can steal 2FA codes and private messages from Android phones

Android devices are vulnerable to a new attack that can covertly steal two-factor authentication codes, location timelines, and other private data in less than 30 seconds. The new attack, named ...
9to5google

Android 16 QPR2 Beta 3.1 rolling out for Pixel

Following last week’s release, Android 16 QPR2 Beta 3.1 is rolling out as a patch for Pixel devices that failed to boot if “Enable desktop experience features” was enabled before installing. On our ...