Android Security & Malware
24 September 2020
A
09:47
Android Security & Malware
Code Execution Vulnerability in Instagram App for Android and iOS
https://research.checkpoint.com/2020/instagram_rce-code-execution-vulnerability-in-instagram-app-for-android-and-ios/
25 September 2020
A
03:39
Android Security & Malware
Apps on Google Play Tainted with Cerberus Banker Malware
https://labs.bitdefender.com/2020/09/apps-on-google-play-tainted-with-cerberus-banker-malware/
A
05:56
Android Security & Malware
Into Android Meterpreter and how the malware launches it — part 2
https://medium.com/@cryptax/into-android-meterpreter-and-how-the-malware-launches-it-part-2-ef5aad2ebf12
A
09:44
Android Security & Malware
Latest disclosed campaign of Android FinFisher used in 2019
https://www.amnesty.org/en/latest/research/2020/09/german-made-finspy-spyware-found-in-egypt-and-mac-and-linux-versions-revealed/
26 September 2020
27 September 2020
A
06:13
Android Security & Malware
MEDUZA - universal SSL unpinning tool for iOS
https://github.com/kov4l3nko/MEDUZA
06:25
17 Joker Trojans found on Google Play caught stealing SMS messages, contact lists, and device information along with silently signing up the victim for premium wireless application protocol (WAP) services
https://www.zscaler.com/blogs/security-research/joker-playing-hide-and-seek-google-play
29 September 2020
A
05:04
Android Security & Malware
Using AT commands (not ADB commands) to extract sensitive Android device info via USB cable

AT commands could be used for Android forensics to extract filesystem images and for some cases even unlocking smartphone
https://www.instagram.com/p/CFtkDgkgHTj/
A
09:43
Android Security & Malware
Android Hacking Primer

How to get started hacking Android applications
https://vickieli.dev/hacking/intro-android/
A
17:09
Android Security & Malware
T
The Bug Bounty Hunter 29.09.2020 17:00:56
Jailbreaking iOS without a Mac (1/4): The Plan

https://medium.com/bugbountywriteup/jailbreaking-ios-without-a-mac-1-4-the-plan-b49c0edc1759
30 September 2020
A
07:25
Android Security & Malware
APT‑C‑23 group evolves its Android spyware
https://www.welivesecurity.com/2020/09/30/aptc23-group-evolves-its-android-spyware/
A
12:25
Android Security & Malware
Video demo how Android Spyware steals WhatsApp messages from received notifications
https://www.instagram.com/reel/CFwz9wMAwuL/
1 October 2020
3 October 2020
A
08:45
Android Security & Malware
Good news, Google will now search for security issues in other Android OEMs (Huawei, Meizu, ZTE, Vivo, OPPO...)
https://android-developers.googleblog.com/2020/10/announcing-launch-of-android-partner.html
5 October 2020
A
03:39
Android Security & Malware
Discovered ACE vulnerability on Facebook for Android that was triaged through download file from group Files Tab
https://medium.com/@dPhoeniixx/arbitrary-code-execution-on-facebook-for-android-through-download-feature-fb6826e33e0f
6 October 2020
A
06:21
Android Security & Malware
T
The Bug Bounty Hunter 06.10.2020 05:36:23
Android Security Testing: Setting up burp suite with Android VM/physical device.

https://medium.com/@hacker7744/android-security-testing-setting-up-burp-suite-with-android-vm-physical-device-e8f713968eef
7 October 2020
A
06:21
Android Security & Malware
Demo of vulnerability discovered in Google's Camera app that allowed 3rd party apps to take pictures and video without user knowledge or CAMERA permission (CVE-2019-2234)
https://www.instagram.com/p/CF-Wm32AnhZ/
Slides: https://i.blackhat.com/asia-20/Friday/asia-20-Yalon-Hey-Google-Activate-Spyware.pdf
8 October 2020
A
11:29
Android Security & Malware
Mobile forensic analysis in action using Andriller
Andriller dumps all accessible data from device, but first you need to enabled ADB debugging. In my case, I performed it on PIN locked, but rooted Samsung S5.
https://www.instagram.com/p/CGEmcz7gv3t/
BTW, Andriller was a commercial toolkit until December 2019, however its author made it free and open-source, so now you can download full version without paying.
Download: https://github.com/den4uk/andriller
A
18:44
Android Security & Malware
Sophisticated new Android malware marks the latest evolution of mobile ransomware
https://www.microsoft.com/security/blog/2020/10/08/sophisticated-new-android-malware-marks-the-latest-evolution-of-mobile-ransomware/
9 October 2020
A
05:30
Android Security & Malware
BAHAMUT: Hack-for-Hire Masters of Phishing, Fake News, and Fake Apps
https://www.blackberry.com/us/en/pdfviewer?file=/content/dam/blackberry-com/asset/enterprise/pdf/direct/report-spark-bahamut.pdf
11 October 2020
A
09:03
Android Security & Malware
Malicious Android SDK delivers unwanted out of context ads
https://www.whiteops.com/blog/somewhere-over-the-rainbowmix
12 October 2020
A
11:40
Android Security & Malware
T
The Bug Bounty Hunter 12.10.2020 11:29:48
Amazon Kindle: iOS App Reverse Engineering for eBooks Leaking

https://abjurato.github.io/stories/kindleEbooks.html
13 October 2020
A
06:59
Android Security & Malware
Vulnerability in JioChat for Android
Caller can cause callee device to send audio without user interaction
https://bugs.chromium.org/p/project-zero/issues/detail?id=2059
A
07:54
Android Security & Malware
Bruteforcing PIN lockscreen using Android as USB HID device

ADB and root are not required to perform this brutforce method!

Requirements:
-Custom compiled Kernel with support for /dev/hidg*
-OTG cable
-Termux
-script with commands
https://www.instagram.com/p/CGRmHwog5oy/
Tutorial:
https://github.com/pelya/android-keyboard-gadget
14 October 2020
A
04:22
Android Security & Malware
Diving Into mobile APT group DONOT's Rabbit Hole
https://community.riskiq.com/article/6f60db72
04:24
Demo of Binance wallet theft using Accessibility services
Demo: https://twitter.com/LukasStefanko/status/1316275015889965056
Research: https://link.springer.com/chapter/10.1007/978-3-030-59817-4_2
16 October 2020
A
03:41
Android Security & Malware
Malicious Mintegral SDK Leaks Data on Android
https://youtu.be/o79R4fr2cho
A
07:32
Android Security & Malware
Hacking into Android in 32 seconds
https://youtu.be/aOWr6rWhsIs
19 October 2020
A
03:28
Android Security & Malware
T
The Bug Bounty Hunter 19.10.2020 03:13:41
Hacking Android Apps with Frida
https://youtu.be/iMNs8YAy6pk
A
10:37
Android Security & Malware
GravityRAT: The spy returns
The cybercriminals added a spy module to Travel Mate, an Android app for travelers to India, the source code of which is available on Github
https://securelist.com/gravityrat-the-spy-returns/99097/
20 October 2020
21 October 2020
A
03:32
Android Security & Malware
Awesome Android Security
Books, bug bounty, courses, tools, labs, talks, write-ups, cheat sheet, blogs
https://github.com/saeidshirazi/awesome-android-security
A
12:16
Android Security & Malware
Multiple Address Bar Spoofing Vulnerabilities In Mobile Browsers (Safari, Yandex for Android, Opera Touch for iOS, UC Browser for Android, Opera Mini Android, RITS Browser and Bolt Browser iOS)
https://www.rafaybaloch.com/2020/10/multiple-address-bar-spoofing-vulnerabilities.html
23 October 2020
A
04:58
Android Security & Malware
HID attack against PC with Android
This is HID (Human Interface Device) attack against Windows 10, using Samsung S7 (HID) that downloads and executes Metasploit payload by hijacking its keyboard. The second Android device is running meterpreter listener and once payload is launched, device is owned
https://www.instagram.com/p/CGrXqKxg41l/
A
06:09
Android Security & Malware
New education article: all about attacks on Android implicit intents
https://blog.oversecured.com/Interception-of-Android-implicit-intents/
A
09:16
Android Security & Malware
Android arbitrary code execution
Frida script that helps to identify potential ACE dynamically
https://github.com/androidmalware/android_frida_scripts#1-file_existsjs
A
20:33
Android Security & Malware
Samsung S20 - RCE via Samsung Galaxy Store App
https://labs.f-secure.com/blog/samsung-s20-rce-via-samsung-galaxy-store-app/
26 October 2020
A
08:36
Android Security & Malware
Getting remote access to PC with Android via USB
https://youtu.be/PJbqZm73MOc
A
09:47
Android Security & Malware
Link previews in chat apps can cause serious privacy problems
There were found several cases of apps with vulnerabilities such as: leaking IP addresses, exposing links sent in end-to-end encrypted chats, and unnecessarily downloading gigabytes of data quietly in the background
https://www.mysk.blog/2020/10/25/link-previews/
27 October 2020
A
08:44
Android Security & Malware
On Google Play were found 21 gaming apps that were packed with hidden adware
https://blog.avast.com/new-malware-apps-on-google-play-avast
IoC: https://docs.google.com/spreadsheets/d/1Cu6KVYG6VWWCZMY0A-vXlewXyfm7yd0djQtTzc82cyY/edit#gid=0
29 October 2020
A
05:12
Android Security & Malware
Android banking malware grew in Q3 with its detections more than four times compared to Q2
https://www.welivesecurity.com/wp-content/uploads/2020/10/ESET_Threat_Report_Q32020.pdf
2 November 2020
A
05:16
Android Security & Malware
DoNot Android APT group targets India, Pakistan and the Kashmir crisis
https://blog.talosintelligence.com/2020/10/donot-firestarter.html
05:23
Trend Micro CTF 2020 — Android Keybox writeup
https://tatocaster.medium.com/trend-micro-ctf-2020-keybox-writeup-cf5a69d2d091
A
12:07
Android Security & Malware
How to monitor Wi-Fi networks using Samsung S7 (link with tutorial, how to install NetHunter, prerequisites, wifi adapter support list, ROM)
https://www.instagram.com/reel/CHF3snlAOOa/
5 November 2020
A
05:49
Android Security & Malware
Lockscreen and Authentication Improvements in Android 11
https://security.googleblog.com/2020/09/lockscreen-and-authentication.html
7 November 2020
A
09:01
Android Security & Malware
Bypass SSL pinning on iOS 8 to iOS 14
https://github.com/evilpenguin/SSLBypass
9 November 2020
A
05:04
Android Security & Malware
APKProxyHelper paches an apk for proxying
https://github.com/evilpenguin/APKProxyHelper
A
11:27
Android Security & Malware
How to identify dynamically loaded binaries in Android apps. Useful for Bug Bounty and malware analysis of dynamically loaded payloads
Commands
# ps | grep "APP_NAME"
# cat /proc/PID/maps | grep "/data/data/"
Demo: https://www.instagram.com/tv/CHXv3iBAJ5V/
Info: https://sayfer.io/blog/dynamic-loading-in-android-applications-with-proc-maps/
10 November 2020
A
05:45
Android Security & Malware
New Android banking trojan - Ghimob - targets 122 financial institutions mainly in Brazil
https://securelist.com/ghimob-tetrade-threat-mobile-devices/99228/
A
10:31
Android Security & Malware
Joker’s New Tricks: Using Github To Hide Its Payload
https://www.trendmicro.com/en_us/research/20/k/an-old-jokers-new-tricks--using-github-to-hide-its-payload.html
11 November 2020
A
06:14
Android Security & Malware
XPCSniffer dumps XPC information to a file and the console #iOS
https://github.com/evilpenguin/XPCSniffer
12 November 2020
A
09:37
Android Security & Malware
VivaVideo Android app is responsible for unwanted premium subscription fraud and invisible ads
https://www.upstreamsystems.com/27-million-premium-subscription-fraud-and-invisible-ads-within-vivavideo-identified-by-secure-d/
13 November 2020
A
07:09
Android Security & Malware
Vulnerable Banking Application for Android
https://github.com/rewanth1997/Damn-Vulnerable-Bank
14 November 2020
A
07:16
Android Security & Malware
Evernote: Universal-XSS, theft of all cookies from all sites, and more
https://blog.oversecured.com/Evernote-Universal-XSS-theft-of-all-cookies-from-all-sites-and-more/
19 November 2020
A
05:49
Android Security & Malware
Remotely stealing cookies from Firefox for Android by visiting an exploit website (CVE-2020-15647)
PoC: https://gist.github.com/kanytu/7fe0640c87b0f3e57bda51e784a7255d
Research: https://medium.com/bugbountywriteup/firefox-and-how-a-website-could-steal-all-of-your-cookies-581fe4648e8d
20 November 2020
A
03:56
Android Security & Malware
Unpatched vulnerability found in GO SMS Pro app allows unauthorized users to see shared media attachments
https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/go-sms-pro-vulnerable-to-media-file-theft/
A
06:39
Android Security & Malware
Running code in the context of iOS Kernel: Part I + LPE POC on iOS 13.7
https://blog.zecops.com/vulnerabilities/running-code-in-the-context-of-ios-kernel-part-i-lpe-poc-on-ios-13-7/
A
13:15
Android Security & Malware
Mobile threat evolution Q3 2020
https://securelist.com/it-threat-evolution-q3-2020-mobile-statistics/99461/
23 November 2020
A
04:09
Android Security & Malware
Vulnerability found in Facebook Messenger for Android that causes audio call to connect before callee has answered the call (bounty $60,000)
https://bugs.chromium.org/p/project-zero/issues/detail?id=2098&s=03
24 November 2020
A
05:13
Android Security & Malware
More than 20 fake Minecraft mods discovered on Google Play (adware)
https://www.kaspersky.com/blog/minecraft-mod-adware-google-play/37717/
A
09:35
Android Security & Malware
Enter WAPDropper – Subscribe Users To Premium Services By Telecom Companies
https://research.checkpoint.com/2020/enter-wapdropper-subscribe-users-to-premium-services-by-telecom-companies/
27 November 2020
A
05:59
Android Security & Malware
Android Reverse Engineering WorkBench for VS Code
https://github.com/Surendrajat/APKLab
29 November 2020
A
11:56
Android Security & Malware
Noia: Simple Android and iOS (newly added feature) application sandbox file browser tool #Frida
https://github.com/0x742/noia
30 November 2020
A
13:37
Android Security & Malware
GIF
Run Hydra on Android to bruteforce passwords in Termux

How to crack a password of HTTP, SSH, VNC services using Hydra
Full video: https://www.instagram.com/tv/CIN7bDFghz9/
1 December 2020
A
20:02
Android Security & Malware
iOS 1-day hunting: uncovering and exploiting CVE-2020-27950 kernel memory leak
https://www.synacktiv.com/publications/ios-1-day-hunting-uncovering-and-exploiting-cve-2020-27950-kernel-memory-leak.html
2 December 2020
A
04:32
Android Security & Malware
Android AdFraud found on Google Play Store
Within the interval of several seconds it loads list of websites inside the invisible WebView
https://vms.drweb.com/virus/?i=22891890
A
06:16
Android Security & Malware
Google discovered iOS zero-click Wi-Fi wormable exploit
Remotely triggered an unauthenticated kernel memory corruption vulnerability which causes all iOS devices in radio-proximity to reboot, with no user interaction.
Exploiting this vulnerability it is possible to run arbitrary code on any nearby iOS device and steal all the user data.
This security issue is fixed now.
https://googleprojectzero.blogspot.com/2020/12/an-ios-zero-click-radio-proximity.html
A
11:40
Android Security & Malware
Apktool v2.5.0 Released
https://connortumbleson.com/2020/12/02/apktool-v2-5-0-released/
3 December 2020
A
09:37
Android Security & Malware
Vulnerability in Google Play Core Library Remains Unpatched in Google Play Applications
If an attacker uses file traversal, the payload is written to the verified folder, and is automatically loaded into the vulnerable application and executed within its scope.
https://research.checkpoint.com/2020/vulnerability-in-google-play-core-library-remains-unpatched-in-google-play-applications/
7 December 2020
A
04:38
Android Security & Malware
The Facebook Messenger Leaking Access Token Of Million Users to third party site
https://medium.com/bugbountywriteup/how-i-found-the-facebook-messenger-leaking-access-token-of-million-users-8ee4b3f1e5e3
A
05:01
Android Security & Malware
ASLR & the iOS Kernel — How virtual address spaces are randomised
https://bellis1000.medium.com/aslr-the-ios-kernel-how-virtual-address-spaces-are-randomised-d76d14dc7ebb
A
11:50
Android Security & Malware
Deep Dive into an Obfuscation-as-a-Service for Android Malware
https://www.stratosphereips.org/blog/2020/12/03/deep-dive-into-an-obfuscation-as-a-service-for-android-malware
8 December 2020
A
06:36
Android Security & Malware
More than 20 million Gionee phones secretly implanted with Trojan Horses to make money
https://www.gizmochina.com/2020/12/05/more-than-20-million-gionee-phones-secretly-implanted-with-trojan-horses-to-make-money/
9 December 2020
A
09:38
Android Security & Malware
Rana Android malware family, attributed by the US government to the Iran-linked APT39 group (also known as Chafer, Cadelspy, Remexi, and ITG07)
https://blog.reversinglabs.com/blog/rana-android-malware
A
14:54
Android Security & Malware
Microsoft Edge for Android Spoofing Vulnerability (CVE-2020-17153)
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17153
14 December 2020
A
07:06
Android Security & Malware
Cellebrite’s New Solution for Decrypting the Signal App
http://web.archive.org/web/20201210150311/https://www.cellebrite.com/en/blog/cellebrites-new-solution-for-decrypting-the-signal-app/
15 December 2020
A
05:23
Android Security & Malware
Bypass antiroot detection for Xamarin apps using Frida
https://codeshare.frida.re/@Gand3lf/xamarin-antiroot/
A
10:12
Android Security & Malware
Decrypting File encrypted by Monaca Plugin
http://blog.rz.my/2020/12/decrypting-monaca-encrypt-plugin.html
16 December 2020
A
05:33
Android Security & Malware
New Spyware Used by Sextortionists to Blackmail iOS and Android Users
https://blog.lookout.com/lookout-discovers-new-spyware-goontact-used-by-sextortionists-for-blackmail
A
18:37
Android Security & Malware
Exploiting new-era of Request forgery on mobile applications
http://dphoeniixx.com/2020/12/13-2/
23 December 2020
A
09:29
Android Security & Malware
An iOS hacker tries Android
https://googleprojectzero.blogspot.com/2020/12/an-ios-hacker-tries-android.html
A
10:02
Android Security & Malware
Journalists Hacked with Suspected NSO Group iMessage ‘Zero-Click’ Exploit
https://citizenlab.ca/2020/12/the-great-ipwn-journalists-hacked-with-suspected-nso-group-imessage-zero-click-exploit/
A
12:09
Android Security & Malware
Analysis of 13 popular secure messaging apps:
https://cybernews.com/security/research-nearly-all-of-your-messaging-apps-are-secure/
3 January 2021
A
11:58
Android Security & Malware
Settting up iOS Debugging
https://understruction.com/setting-up-ios-debugging
4 January 2021
A
08:19
Android Security & Malware
Android Security
Supplementary material for Android Trainings:
1) Deep Dive Android
2) Xtreme Android Hacking
3) Android Pentesting
https://github.com/anantshri/Android_Security
5 January 2021
A
06:25
Android Security & Malware
Explanation of Samsung's Real-time Kernel Protection and reveal the vulnerability, the one-liner exploit
https://blog.longterm.io/samsung_rkp.html
7 January 2021
A
05:42
Android Security & Malware
Getting root on a 4G LTE mobile hotspot (Alcatel MW41)
https://alex.studer.dev/2021/01/04/mw41-1
A
14:28
Android Security & Malware
Comparing user data gathering of popular messaging apps (Signal won)
https://9to5mac.com/2021/01/04/app-privacy-labels-messaging-apps/
12 January 2021
A
11:08
Android Security & Malware
Which messenger is the most secure?
Analysis done by Threema.
https://threema.ch/en/messenger-comparison
A
12:07
Android Security & Malware
New Android spyware targets users in Pakistan
https://news.sophos.com/en-us/2021/01/12/new-android-spyware-targets-users-in-pakistan/
13 January 2021
A
05:44
Android Security & Malware
Going Rogue - a Mastermind behind Android Malware Returns with a New RAT
https://research.checkpoint.com/2021/going-rogue-a-mastermind-behind-android-malware-returns-with-a-new-rat/
A
07:09
Android Security & Malware
Detail analysis of Android vulnerabilities being exploited in the wild found by Project Zero
Android Exploits ITW: https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-exploits.html
Android Post-Exploitation https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-post-exploitation.html
15 January 2021
A
05:37
Android Security & Malware
xnuspy - iOS kernel function hooking framework for checkra1n'able devices
https://github.com/jsherman212/xnuspy
17 January 2021
A
08:29
Android Security & Malware
How to use Ghidra to Reverse Engineer Mobile Application
https://medium.com/bugbountywriteup/how-to-use-ghidra-to-reverse-engineer-mobile-application-c2c89dc5b9aa
A
13:56
Android Security & Malware
Adware found on Google Play store
https://www.whiteops.com/blog/imitation-is-the-sincerest-form-of-fraudery?s=03
18 January 2021
A
04:57
Android Security & Malware
Reverse Engineering Android React Native application
https://secureitmania.medium.com/lets-know-how-i-have-explored-the-buried-secrets-in-react-native-application-6236728198f7
19 January 2021
A
06:45
Android Security & Malware
Vulnerability in Shazam application allowed an attacker to steal location of a user by clicking a link
https://www.ash-king.co.uk/blog/Shazlocate-abusing-CVE-2019-8791-CVE-2019-8792
A
07:19
Android Security & Malware
How to gain access to arbitrary Content Providers
https://blog.oversecured.com/Gaining-access-to-arbitrary-Content-Providers/
20 January 2021
A
05:30
Android Security & Malware
A Special Attack Surface of the Android System (1): Evil Dialog Box
https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1351377961017942016
A
08:10
Android Security & Malware
Blowing the Cover of Android Binary Fuzzing
https://speakerdeck.com/flankerhqd/blowing-the-cover-of-android-binary-fuzzing
21 January 2021
A
11:23
Android Security & Malware
MobileAudit - performs security testing and malware analysis for Android APKs
https://github.com/mpast/mobileAudit
22 January 2021
A
10:05
Android Security & Malware
Analysis of Android Worm that spreads via WhatsApp messages as Huawei Mobile app
https://youtu.be/XXi29noe2NE
A
11:53
Android Security & Malware
Different Android security lock states and their trade-offs
https://www.mayrhofer.eu.org/post/android-tradeoffs-2-lockstates/
27 January 2021
A
06:30
Android Security & Malware
Update your iOS!
iOS 0days chain /RCE+LPE/ is being exploited ITW. The fix is available.
https://support.apple.com/en-us/HT212146
A
08:09
Android Security & Malware
Apparently new Android banking Trojan called "Oscorp" spreads in Italy
http://translate.google.com/translate?hl=en&sl=auto&tl=en&u=https%3A%2F%2Fcert-agid.gov.it%2Fnews%2Foscorp-il-solito-malware-per-android%2F
A
09:31
Android Security & Malware
Demo of technique used by Android malware that prevents victim to uninstall it from device (how to fix it)
https://youtu.be/YvfiKPpMoaU
A
13:31
Android Security & Malware
Useful insight on Android's Special App Accesses, since they are treated and mitigated differently as regular app permissions
https://medium.com/mitre-attack/mobile-attack-mitigating-android-abuse-50516fb7de85
28 January 2021
A
05:46
Android Security & Malware
Security Fixes and Rewards for Chrome for Android
https://chromereleases.googleblog.com/2020/10/chrome-for-android-update_31.html
A
13:26
Android Security & Malware
Investigation Xoth: Smartphone location tracking
https://www.expressvpn.com/digital-security-lab/investigation-xoth
29 January 2021
A
06:41
Android Security & Malware
Reverse Engineering iMessage: Leveraging the Hardware to Protect the Software
https://www.nowsecure.com/blog/2021/01/27/reverse-engineering-imessage-leveraging-the-hardware-to-protect-the-software/
A
13:34
Android Security & Malware
T
The Bug Bounty Hunter 28.01.2021 07:04:22
Android Penetration Testing: Frida https://www.hackingarticles.in/android-penetration-testing-frida/
30 January 2021
A
08:09
Android Security & Malware
Vulnerability found in Facebook for Android that could trigger malicious deep links, run arbitrary JavaScript or replace URLs to phishing pages
https://ash-king.co.uk/blog/Launching-internal-non-exported-deeplinks-on-Facebook
1 February 2021
A
05:23
Android Security & Malware
Reverse engineering Flutter for Android + Doldrums (Doldrums is a reverse engineering tool for Flutter apps)
https://rloura.wordpress.com/2020/12/04/reversing-flutter-for-android-wip/
https://github.com/rscloura/Doldrums
A
11:59
Android Security & Malware
Dissecting a MediaTek BootROM exploit
https://tinyhack.com/2021/01/31/dissecting-a-mediatek-bootrom-exploit/
3 February 2021
A
10:17
Android Security & Malware
Data Driven Security Hardening in Android
https://security.googleblog.com/2021/01/data-driven-security-hardening-in.html
A
19:23
Android Security & Malware
Hackers tried to trick iPhone users into installing a fake version of WhatsApp to spy on them.
How: By tricking users into installing configuration files or so-called Mobile Device Management (MDM) profiles, which can then potentially push malware onto a target device.
https://www.vice.com/en/article/akdqwa/a-spyware-vendor-seemingly-made-a-fake-whatsapp-to-hack-targets
4 February 2021
A
06:44
Android Security & Malware
New Android DDoS botnet called - Matryosh - communicates over TOR and infect devices via enabled ADB port
https://blog.netlab.360.com/matryosh-botnet-is-spreading-en/
A
18:37
Android Security & Malware
CVE-2020-27932: iOS Kernel privesc with turnstiles
https://googleprojectzero.blogspot.com/p/rca-cve-2020-27932.html
6 February 2021
7 February 2021
A
06:57
Android Security & Malware
Barcode Scanner app on Google Play infects 10 million users with one update
https://blog.malwarebytes.com/android/2021/02/barcode-scanner-app-on-google-play-infects-10-million-users-with-one-update/
8 February 2021
A
07:20
Android Security & Malware
Insecure Data Storage: Clear Text Storage of Sensitive Information (Hard-coded strings, credentials, tokens & keys)
https://medium.com/mobis3c/insecure-data-storage-clear-text-storage-of-sensitive-information-hard-coded-strings-fb7b056c0d0
A
10:27
Android Security & Malware
Domestic Kitten (APT-C-50) – An Inside Look at the Iranian Surveillance Operations
https://research.checkpoint.com/2021/domestic-kitten-an-inside-look-at-the-iranian-surveillance-operations/
10 February 2021
A
11:30
Android Security & Malware
Couple of bugs disclosed for Huawei, Motorola, OPPO, Mediatek, Vivo, Meizu, ZTE, K-Touch, Transsion, Digitime devices
Issues: ADB private key leak, a cloud services key leak, and permissions bypass for system APIs
https://bugs.chromium.org/p/apvi/issues/list?q=&can=1
A
12:42
Android Security & Malware
iOS 14.3 kernel LPE for ALL devices
https://github.com/ModernPwner/cicuta_virosa
11 February 2021
A
19:42
Android Security & Malware
Kasablanka Group's LodaRAT improves espionage capabilities on Android and Windows
https://blog.talosintelligence.com/2021/02/kasablanka-lodarat.html
12 February 2021
A
05:09
Android Security & Malware
Discovered Confucius APT Android Spyware Linked to India-Pakistan Conflict
https://blog.lookout.com/lookout-discovers-novel-confucius-apt-android-spyware-linked-to-india-pakistan-conflict
15 February 2021
A
07:27
Android Security & Malware
Flash GrapheneOS ROM through a web browser
https://grapheneos.org/install/web
17 February 2021
A
06:46
Android Security & Malware
SHAREit Flaw Could Lead to Remote Code Execution
https://www.trendmicro.com/en_us/research/21/b/shareit-flaw-could-lead-to-remote-code-execution.html
06:48
Stealing Facebook access token and WebView cookies from SHAREit using 3rd party app (not fixed)
https://youtu.be/D2d8AL1jtes
A
07:58
Android Security & Malware
Hunting for bugs in Telegram's animated stickers remote attack surface
https://www.shielder.it/blog/2021/02/hunting-for-bugs-in-telegrams-animated-stickers-remote-attack-surface/
A
20:12
Android Security & Malware
Analyzing Clubhouse for fun and profit
https://theori.io/research/korean/analyzing-clubhouse/
18 February 2021
A
07:17
Android Security & Malware
“ScamClub” Bypasses Iframe Sandboxing With postMessage() to deliver malvertism ads [CVE-2021–1801]
https://blog.confiant.com/malvertiser-scamclub-bypasses-iframe-sandboxing-with-postmessage-shenanigans-cve-2021-1801-1c998378bfba
22 February 2021
A
05:42
Android Security & Malware
How to intercept traffic from Android apps with Objection and Burp
https://youtu.be/Ft3H-3J67UE
23 February 2021
A
05:29
Android Security & Malware
Reverse Engineering Clubhouse
https://www.klmlabs.co/blog/club-house-observations-th5x8
25 February 2021
A
06:09
Android Security & Malware
Samsung Investigation Part 1: TEEs, TrustZone and TEEGRIS
https://www.riscure.com/blog/samsung-investigation-part1
A
07:19
Android Security & Malware
Activation of arbitrary intent due to unsafe deserialization - CVE-2020-0082

This leads to EoP in Android 10.
It could start any privileged intent without permission.
With this vulnerability it would be possible to silently install and uninstall any app.
https://github.com/0x742/CVE-2020-0082-ExternalVibration
A
07:48
Android Security & Malware
A Special Attack Surface in Android (Ⅱ) — The dangerous deeplinks
https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1359026676922851328
26 February 2021
A
04:39
Android Security & Malware
Using Frida to find hooks in Android applications (security products, malware, or even games deploying anti-cheat software)
https://corellium.com/blog/android-frida-finding-hooks
2 March 2021
A
05:31
Android Security & Malware
Mobile malware evolution 2020
https://securelist.com/mobile-malware-evolution-2020/101029/
A
16:47
Android Security & Malware
Use-After-Free in Browser Process that can be used to escape the Chromium sandbox on Android Devices
PoC + description: https://microsoftedge.github.io/edgevr/posts/yet-another-uaf/
3 March 2021
A
04:39
Android Security & Malware
Vulnerability found in Aiwinn multiple OEM devices allow silent installation of attacker provided app [CVE-2020-0222]
https://bugs.chromium.org/p/apvi/issues/detail?id=36&q=&can=1
4 March 2021
A
12:23
Android Security & Malware
APKLeaks - scans APK files for URIs, endpoints & secrets
Tool: https://github.com/dwisiswant0/apkleaks
Demo: https://fb.watch/40Jd7HoAqs/
5 March 2021
A
10:31
Android Security & Malware
Android FluBot (aka Cabassous) - banking malware responsible for spam SMS campaings in Spain & Poland impersonates FedEx, DHL, Correos, Chrome.
FluBot has already infected more than 60,000 victims and stolen 11 million+ phone numbers
https://raw.githubusercontent.com/prodaft/malware-ioc/master/FluBot/FluBot.pdf
8 March 2021
A
09:18
Android Security & Malware
How we could have tracked anyone's live location using Truecaller's "Guardians" app
https://www.pingsafe.ai/blog/hacking-truecallers-guardian-application-to-track-you
A
14:41
Android Security & Malware
Reverse Engineering a Flutter app by recompiling Flutter Engine
https://tinyhack.com/2021/03/07/reversing-a-flutter-app-by-recompiling-flutter-engine/
9 March 2021
A
08:23
Android Security & Malware
A new Dropper on Google Play Dropping the AlienBot Banker and MRAT
https://research.checkpoint.com/2021/clast82-a-new-dropper-on-google-play-dropping-the-alienbot-banker-and-mrat/
13 March 2021
A
07:42
Android Security & Malware
Android proxy malware - Mobdro - was downloaded more than 100 million times and made more than €5 million
https://therecord.media/police-shut-down-android-app-that-transformed-smartphones-into-proxies/
16 March 2021
A
10:58
Android Security & Malware
The Brief Glory of Cabassous/FluBot — a private Android banking botnet
https://medium.com/csis-techblog/the-brief-glory-of-cabassous-flubot-a-private-android-banking-botnet-bc2ed7917027
A
17:57
Android Security & Malware
Samsung Investigation Part 2: Exploiting Trusted Applications (TAs)
https://www.riscure.com/blog/samsung-investigation-part2
17 March 2021
A
07:59
Android Security & Malware
Still using SMS as 2FA?
For $16 a hacker can rerouted all received SMS messages to him and break into online accounts. This isn't SIM jacking or SS7.
Attacker just pays a company and get control of text routing in minutes
https://www.vice.com/en/article/y3g8wb/hacker-got-my-texts-16-dollars-sakari-netnumber
A
11:11
Android Security & Malware
Android reverse engineering for beginners - Dexcalibur
https://braincoke.fr/blog/2021/03/android-reverse-engineering-for-beginners-dexcalibur/
18 March 2021
A
09:52
Android Security & Malware
TikTok for Android 1-Click RCE

XSS -> Launch arbitrary intent to download ZIP file -> exploit file traversal -> overwrite native library -> RCE
https://medium.com/@dPhoeniixx/tiktok-for-android-1-click-rce-240266e78105
19 March 2021
A
11:20
Android Security & Malware
Android TapJacking Attacks, a thorough guide
https://valsamaras.medium.com/tapjacking-attacks-a-thorough-guide-2cd6486d0fc9
20 March 2021
A
05:51
Android Security & Malware
T
The Bug Bounty Hunter 19.03.2021 20:45:07
IOS Pentesting Guide From A N00bs Perspective

https://payatu.com/blog/abhilashnigam/ios-pentesing-guide-from-a-n00bs-perspective.1
23 March 2021
A
05:05
Android Security & Malware
Security and Privacy Analysis of TikTok and Douyin
https://citizenlab.ca/2021/03/tiktok-vs-douyin-security-privacy-analysis/
24 March 2021
A
09:41
Android Security & Malware
Use Android as Rubber Ducky against another Android device (now with script & tutorial)
Demo: https://www.instagram.com/p/CMwxrItDuiG/
Github: https://github.com/androidmalware/android_hid
25 March 2021
A
05:16
Android Security & Malware
Discovered 204 fleeceware apps with over a billion downloads and over $400 million in revenue on the Apple App Store and Google Play Store
Fleeceware scams promise free subscription trials but deliver costly charges to victims
https://blog.avast.com/fleeceware-apps-on-mobile-app-stores-avast
26 March 2021
A
05:58
Android Security & Malware
Proxying Newer Versions of Android with Genymotion
http://console-cowboys.blogspot.com/2021/03/proxying-newer-versions-of-android-with.html
A
07:52
Android Security & Malware
T
The Bug Bounty Hunter 25.03.2021 16:29:32
Capture all android network traffic https://www.exandroid.dev/2021/03/21/capture-all-android-network-traffic/
A
10:49
Android Security & Malware
WhatsApp scam messages - what happens when you click on them
https://youtu.be/Dc7Y1fiZGuA
27 March 2021
A
05:49
Android Security & Malware
Advanced Android Malware Posing as “System Update”
https://blog.zimperium.com/new-advanced-android-malware-posing-as-system-update/
28 March 2021
A
09:11
Android Security & Malware
TapJacking Attacks - thorough guide PART 2
https://valsamaras.medium.com/tapjacking-attacks-a-thorough-guide-part-2-3b0390602a81
29 March 2021
A
08:03
Android Security & Malware
Android Flubot: quick analysis of new campaign with version 3.7
https://cryptax.medium.com/android-flubot-preparing-for-a-new-campaign-2f7563fc6c06
30 March 2021
A
10:49
Android Security & Malware
Google collects 20 times more telemetry from Android devices than Apple from iOS
https://therecord.media/google-collects-20-times-more-telemetry-from-android-devices-than-apple-from-ios/
31 March 2021
A
08:33
Android Security & Malware
Universal method how to remove Android malware that prevents user from being uninstalled such as FluBot
https://youtu.be/dIIDh1AqUKQ
4 April 2021
A
04:26
Android Security & Malware
Received Instagram badge verification messages?
1) What happens when you click on the link
2) What it requests from user
3) What happens with user data
4) Finding XSS in their page :)
5) Network analysis in Burp Suite to identify server and how are data exchanged
6) Prevention tips
https://odysee.com/@androidmalware:2/instagram_scams:9
6 April 2021
A
08:40
Android Security & Malware
How to use basic ADB commands to control Android apps
https://odysee.com/@androidmalware:2/adbCommands:9
7 April 2021
A
04:46
Android Security & Malware
Pre-installed auto installer threat found on Android mobile devices in Germany
https://blog.malwarebytes.com/android/2021/04/pre-installed-auto-installer-threat-found-on-android-mobile-devices-in-germany/
A
09:42
Android Security & Malware
Malware found on the Huawei's AppGallery app store for the first time (10 apps were installed by 538,000 users)
https://news.drweb.com/show/?i=14182
A
15:23
Android Security & Malware
Unprotected Exported Intents Expose Sensitive Information in LAVA app (CVE-2020-27069)
https://bugs.chromium.org/p/apvi/issues/detail?id=42&q=&can=1
9 April 2021
A
09:43
Android Security & Malware
Triada Trojan detected in APKPure client app
https://news.drweb.com/show/?i=14188&lng=en
A
10:05
Android Security & Malware
SiAAA - Auto Install Scripts for i0S and Android Application Analysis
https://m2sup3rn0va.github.io/SiAAA/siaaa.html
11 April 2021
A
05:07
Android Security & Malware
Clubhouse data leak: 1.3 million user records leaked online for free
User ID
Name
Photo URL
Username
Twitter handle
Instagram handle
Number of followers
Number of people followed by the user
Account creation date
Invited by user profile name
https://cybernews.com/security/clubhouse-data-leak-1-3-million-user-records-leaked-for-free-online/
12 April 2021
A
10:09
Android Security & Malware
How to use Android as Rubber Ducky from NetHunter | Tutorial
https://youtu.be/bYfict-752k
13 April 2021
A
04:59
Android Security & Malware
BRATA Android Banking Malware Keeps Sneaking into Google Play, Now Targeting USA and Spain
Blog: https://www.mcafee.com/blogs/other-blogs/mcafee-labs/brata-keeps-sneaking-into-google-play-now-targeting-usa-and-spain/
Full report: https://www.mcafee.com/enterprise/en-us/assets/reports/rp-brata.pdf
14 April 2021
A
05:19
Android Security & Malware
Solving OWASP UnCrackable Android App Level 1 with Runtime Mobile Security (RMS)
https://youtu.be/P6rNPkM2DdY
A
11:21
Android Security & Malware
Remote exploitation of a man-in-the-disk vulnerability in WhatsApp (CVE-2021-24027)
Research: https://census-labs.com/news/2021/04/14/whatsapp-mitd-remote-exploitation-CVE-2021-24027/
PoC: https://github.com/CENSUS/whatsapp-mitd-mitm
15 April 2021
A
07:09
Android Security & Malware
Google Photos : Theft of Database & Arbitrary Files Android Vulnerability
PoC + research: https://servicenger.com/blog/mobile/google-photos-theft-of-database-arbitrary-files-android-vulnerability/
19 April 2021
A
06:34
Android Security & Malware
Hunting for bugs in Telegram's animated stickers remote attack surface
https://www.shielder.it/blog/2021/02/hunting-for-bugs-in-telegrams-animated-stickers-remote-attack-surface/
A
11:15
Android Security & Malware
How to setup Android as Rubber Ducky without NetHunter - part 2 | Tutorial
https://youtu.be/Mek9DMGy8os
21 April 2021
A
04:06
Android Security & Malware
Clever Billing Fraud Applications on Google Play: Etinu
https://www.mcafee.com/blogs/other-blogs/mcafee-labs/clever-billing-fraud-applications-on-google-play-etinu/
22 April 2021
26 April 2021
A
04:39
Android Security & Malware
Android TapJacking Attacks, a thorough guide LAST PART (3)
https://valsamaras.medium.com/tapjacking-attacks-a-thorough-guide-last-part-3-f19614314b7
A
10:52
Android Security & Malware
InternalBlue - Bluetooth → Wi-Fi Code Execution & Wi-Fi Debugging
Blog: https://naehrdine.blogspot.com/2021/04/bluetooth-wi-fi-code-execution-wi-fi.html
PoCs: https://github.com/seemoo-lab/internalblue
27 April 2021
A
09:13
Android Security & Malware
How to analyze mobile malware: a Cabassous/FluBot Case study
https://blog.nviso.eu/2021/04/19/how-to-analyze-mobile-malware-a-cabassous-flubot-case-study/
30 April 2021
A
09:35
Android Security & Malware
How to exploit memory corruption bugs on Android + an example of such issue in PayPal app
https://blog.oversecured.com/Exploiting-memory-corruption-vulnerabilities-on-Android/
1 May 2021
A
04:35
Android Security & Malware
T
The Bug Bounty Hunter 30.04.2021 19:15:32
Decrypting Mobile App Traffic using AES Killer and Frida

https://n00b.sh/posts/aes-killer-mobile-app-demo/
A
06:53
Android Security & Malware
Android apps targeting JIO users in India
https://www.zscaler.com/blogs/security-research/android-apps-targeting-jio-users-india
4 May 2021
A
04:05
Android Security & Malware
Mobile Apps Exposing AWS Keys Affect 100M+ Users’ Data
https://bevigil.com/blog/mobile-apps-exposing-aws-keys-affect-100m-users-data/
A
05:17
Android Security & Malware
The Rage of Android Banking Trojans
https://www.threatfabric.com/blogs/the-rage-of-android-banking-trojans.html
A
09:34
Android Security & Malware
Possibilities how to unlock PIN protected Android device using ADB or HID method
https://youtu.be/x5Rt93jshC8
6 May 2021
A
04:27
Android Security & Malware
Roaming Mantis Amplifies Smishing Campaign with OS-Specific Android Malware
https://www.mcafee.com/blogs/other-blogs/mcafee-labs/roaming-mantis-amplifies-smishing-campaign-with-os-specific-android-malware/
A
06:33
Android Security & Malware
No Joking Around with JOKER
https://labs.k7computing.com/?p=22199
A
12:03
Android Security & Malware
Security Vulnerabilities fixed in Firefox 88.0.1, Firefox for Android 88.1.3 (CVE-2021-29953: Universal Cross-Site Scripting)
https://www.mozilla.org/en-US/security/advisories/mfsa2021-20/
8 May 2021
A
03:46
Android Security & Malware
128M customers have downloaded the 2500+ apps that were containing malware known as XCodeGhost from the App Store
https://www.vice.com/amp/en/article/n7bbmz/the-fortnite-trial-is-exposing-details-about-the-biggest-iphone-hack-of-all-time
11 May 2021
A
04:22
Android Security & Malware
Trigger custom URL in Medium Android app
https://medium.com/@Mrcyberwarrior/exploiting-activity-in-medium-android-app-e2e6f3553eef
A
09:00
Android Security & Malware
Technical analysis of Android banking malware called TeaBot aka Antsa aka Toddler (it is not a FluBot)
https://f.hubspotusercontent10.net/hubfs/3993512/%5BTLP_WHITE%5DCleafyLABS_TeaBot_Technical_Analysis.pdf
12 May 2021
A
18:31
Android Security & Malware
Android overlay attacks on Belgian financial applications #TeaBot
https://blog.nviso.eu/2021/05/11/android-overlay-attacks-on-belgian-financial-applications/
13 May 2021
A
10:03
Android Security & Malware
Analysis and replication of tampered Instagram story that crashes the app
https://youtu.be/4jCetFetFQA
A
11:58
Android Security & Malware
Fake Android and iOS apps disguise as trading and cryptocurrency apps
https://news.sophos.com/en-us/2021/05/12/fake-android-and-ios-apps-disguise-as-trading-and-cryptocurrency-apps/
17 May 2021
A
09:15
Android Security & Malware
Android stalkerware vulnerabilities

Manual analysis of 58 Android stalkerware apps revealed 158 security and privacy issues
https://www.welivesecurity.com/2021/05/17/android-stalkerware-threatens-victims-further-exposes-snoopers-themselves/
18 May 2021
A
03:57
Android Security & Malware
How Flubot targets Android phone users and their money
https://www.nortonlifelock.com/blogs/research-group/flubot-targets-android-phone-users
19 May 2021
A
04:50
Android Security & Malware
A native packer for Android/MoqHao
https://cryptax.medium.com/a-native-packer-for-android-moqhao-6362a8412fe1
A
12:38
Android Security & Malware
Four Android vulnerabilities patched earlier this month may be under limited, targeted exploitation (CVE-2021-1905, CVE-2021-1906, CVE-2021-28663, CVE-2021-28664)
https://therecord.media/arm-and-qualcomm-zero-days-quietly-patched-in-this-months-android-security-updates/
23 May 2021
A
16:46
Android Security & Malware
Fuzzing iOS code on macOS at native speed
https://googleprojectzero.blogspot.com/2021/05/fuzzing-ios-code-on-macos-at-native.html
2 June 2021
A
10:11
Android Security & Malware
UC Browser - the 4th largest mobile browser exfiltrates users’ data even in Incognito mode
https://hookgab.medium.com/ucbrowser-privacy-study-ecff96fbcee4
3 June 2021
A
11:25
Android Security & Malware
Persistent Arbitrary code execution in Mattermost Android app
https://hackerone.com/reports/1115864
4 June 2021
A
04:39
Android Security & Malware
How to exploit insecure WebResourceResponse configurations + an example vulnerability in Amazon apps
https://blog.oversecured.com/Android-Exploring-vulnerabilities-in-WebResourceResponse/
7 June 2021
A
07:41
Android Security & Malware
OnePlus - Elevated package privileges
https://bugs.chromium.org/p/apvi/issues/detail?id=46&q=&can=1
8 June 2021
A
17:39
Android Security & Malware
Key aspects of secure networking on iOS
https://www.securing.pl/en/key-aspects-of-secure-networking-on-ios/
9 June 2021
A
04:37
Android Security & Malware
T
The Bug Bounty Hunter 08.06.2021 17:34:26
Getting started with Android Application Security

https://blog.cobalt.io/getting-started-with-android-application-security-6f20b76d795b
10 June 2021
A
11:57
Android Security & Malware
Two weeks of securing Samsung devices: Part 1
https://blog.oversecured.com/Two-weeks-of-securing-Samsung-devices-Part-1/
14 June 2021
A
04:25
Android Security & Malware
Mistune - remote exploit targeting iOS 14.2 on iPhone 11 triggered by opening a malicious link
https://blog.chichou.me/mistune/
A
05:54
Android Security & Malware
iOS Malicious Bit Hunter - malicious plug-in detection engine for iOS applications
https://github.com/alipay/ios-malicious-bithunter
A
07:10
Android Security & Malware
Culpritware - apps which make profit from victims through deceiving, threatening or other criminal actions
https://arxiv.org/pdf/2106.05756.pdf
15 June 2021
A
03:58
Android Security & Malware
Android screen lock protection thwarted by Facebook Messenger Rooms exploit
https://portswigger.net/daily-swig/android-screen-lock-protection-thwarted-by-facebook-messenger-rooms-exploit
A
05:47
Android Security & Malware
Apple Issues Urgent Patches for 2 Zero-Day Flaws Exploited in the Wild (CVE-2021-30761, CVE-2021-30762)
https://thehackernews.com/2021/06/apple-issues-urgent-patches-for-2-zero.html
16 June 2021
A
01:50
Android Security & Malware
Unpacking Android Apps via a Hardware-Assisted Approach
https://yajin.org/papers/sp21_happer.pdf
A
05:45
Android Security & Malware
Analysis of bypassing Android Verified Boot process on the Peloton Bike+
https://www.mcafee.com/blogs/other-blogs/mcafee-labs/a-new-program-for-your-peloton-whether-you-like-it-or-not/
18 June 2021
A
09:07
Android Security & Malware
Google fixes a persistent code execution in their app
https://blog.oversecured.com/Why-dynamic-code-loading-could-be-dangerous-for-your-apps-a-Google-example/
21 June 2021
A
03:23
Android Security & Malware
T
The Bug Bounty Hunter 18.06.2021 11:34:23
iOS App Testing Through Burp on Corellium

https://defparam.medium.com/ios-app-testing-through-burp-on-corellium-fe59ed849516
A
04:26
Android Security & Malware
T
The Bug Bounty Hunter 20.06.2021 11:46:57
Quick Analysis for the SSID Format String Bug

https://blog.chichou.me/2021/06/20/quick-analysis-wifid/
A
04:42
Android Security & Malware
Teabot : Android Banking Trojan Targets Banks in Europe
https://labs.k7computing.com/?p=22407&s=03
A
05:26
Android Security & Malware
Android FluBot enters Switzerland
https://securityblog.switch.ch/2021/06/19/android-flubot-enters-switzerland/
A
07:42
Android Security & Malware
Check out Medusa's Flutter Certificate Pinning bypass modules:
verify_cert_chain_bypass_v7a.med
verify_cert_chain_bypass_v8a.med
verify_cert_chain_bypass_x86_64.med
https://github.com/Ch0pin/medusa
07:55
Google Play store applications laced with Joker malware yet again
https://blogs.quickheal.com/google-play-store-applications-laced-with-joker-malware-yet-again/
A
09:24
Android Security & Malware
Solving Android CTF with Frida
https://cmrodriguez.me/blog/hpandro-1/
https://cmrodriguez.me/blog/hpandro-2/
22 June 2021
A
04:52
Android Security & Malware
DroidMorph tool generates Android Malware Clones
https://arxiv.org/pdf/2106.09218.pdf
25 June 2021
A
04:14
Android Security & Malware
Bug Bounty on Android : setup your Genymotion environment for APK analysis
https://blog.yeswehack.com/yeswerhackers/bug-bounty-android-setup-genymotion-environment-apk-analysis/
28 June 2021
A
04:58
Android Security & Malware
Android app gives his phone the power to mimic credit card communications and exploit flaws in the NFC systems’ firmware can chain together multiple exploits to crash point-of-sales devices, hack them to collect and transmit card data, change the value of transactions, and even lock the devices with a ransomware message
https://www.xda-developers.com/smartphones-nfc-point-of-sale-atm-hack/
A
06:45
Android Security & Malware
How to setup Ninjutsu Android Penetration Testing Environment
https://ninjutsu-blog.github.io/2021/06/27/How-to-setup-Ninjutsu-Android-Penetration-Testing-Environment/
2 July 2021
A
05:49
Android Security & Malware
Android trojans steal Facebook users’ logins and passwords
https://news.drweb.com/show/?i=14244&lng=en&c=5
4 July 2021
A
07:09
Android Security & Malware
T
The Bug Bounty Hunter 03.07.2021 13:21:23
Genymotion+Xposed+Inspeckage https://secureitmania.medium.com/genymotion-xposed-inspeckage-89f0c8decba7
12 July 2021
A
05:21
Android Security & Malware
PJobRAT – Android spyware in Guise
https://labs.k7computing.com/?p=22537
A
08:50
Android Security & Malware
Reverse Engineering the M6 Smart Fitness Bracelet
https://rbaron.net/blog/2021/07/06/Reverse-engineering-the-M6-smart-fitness-band.html
A
09:53
Android Security & Malware
Android Crypto Mining Scams - fake apps provide fake cloud cryptocurrency mining
https://blog.lookout.com/lookout-unearths-android-crypto-mining-scams
A
11:05
Android Security & Malware
Damn Vulnerable Bank - vulnerable Android application that tests your Android hacking skills
https://rewanthtammana.com/damn-vulnerable-bank/index.html
13 July 2021
A
04:14
Android Security & Malware
Vulnerability in Xiaomi MIUI Powerkeeper App allows an attacker on the same network to write arbitrary files on the device, as the system user
https://bugs.chromium.org/p/apvi/issues/detail?id=50
A
04:38
Android Security & Malware
Washing Machine app won't work unless I give it access to my contacts, location and camera.
https://www.reddit.com/r/assholedesign/comments/offnc8/my_washing_machine_app_wont_work_unless_i_give_it/
A
07:29
Android Security & Malware
Investigating Android malware with Pithus
https://cryptax.medium.com/investigating-android-malware-with-pithus-17d2143cc528
A
08:03
Android Security & Malware
Creating a powerful Android app context protector with Frida and r2
https://docs.google.com/presentation/d/1BktWJ91ill5iI_-ENzh2Uq14BGIHxxpONzNYybYJIC4/edit#slide=id.p
16 July 2021
A
04:01
Android Security & Malware
iOS zero-day let SolarWinds hackers compromise fully updated iPhones
https://arstechnica.com/gadgets/2021/07/solarwinds-hackers-used-an-ios-0-day-to-steal-google-and-microsoft-credentials/
19 July 2021
A
05:36
Android Security & Malware
Blog post about the anti-jailbreak, anti-Frida, anti-debug used in PokemonGO
https://www.romainthomas.fr/post/21-07-pokemongo-anti-frida-jailbreak-bypass/
A
06:05
Android Security & Malware
Meet WiFiDemon: iOS WiFi RCE 0-Day Vulnerability & a 'Zero-Click' Vulnerability That was Silently Patched
https://blog.zecops.com/research/meet-wifidemon-ios-wifi-rce-0-day-vulnerability-and-a-zero-click-vulnerability-that-was-silently-patched/
A
06:47
Android Security & Malware
Forensic Methodology Report: How to catch NSO Group’s Pegasus
https://www.amnesty.org/en/latest/research/2021/07/forensic-methodology-report-how-to-catch-nso-groups-pegasus/
20 July 2021
A
09:32
Android Security & Malware
Some URL shortener services distribute Android malware, including banking or SMS trojans
https://www.welivesecurity.com/2021/07/20/url-shortener-services-android-malware-banking-sms-trojans/
21 July 2021
A
07:57
Android Security & Malware
T
The Bug Bounty Hunter 20.07.2021 17:15:43
Pentesting iOS| Starting With iOS Emulator Corellium & Re-signing IPA

https://justm0rph3u5.medium.com/pentesting-ios-starting-with-ios-emulator-corellium-re-signing-ipa-9ce3cbd19721
22 July 2021
A
06:01
Android Security & Malware
Joker malware targets Google Play Store
https://www.zscaler.com/blogs/security-research/joker-joking-google-play
A
07:58
Android Security & Malware
The Coper―a new Android banking trojan targeting Colombian users
https://news.drweb.com/show/?i=14259&lng=en&c=5
26 July 2021
A
06:29
Android Security & Malware
StrongPity APT Group Deploys Android Malware for the First Time on the Syrian e-Gov website
https://www.trendmicro.com/en_us/research/21/g/strongpity-apt-group-deploys-android-malware-for-the-first-time.html
27 July 2021
A
08:12
Android Security & Malware
Signal fixes bug in Android app that sent random images to wrong contacts
https://www.bleepingcomputer.com/news/security/signal-fixes-bug-that-sent-random-images-to-wrong-contacts/
29 July 2021
A
06:49
Android Security & Malware
Android Vultur RAT — new remote access trojan can record screen, keylog user input, steal banking credentials and has VNC module to provide remote access
https://threatfabric.com/blogs/vultur-v-for-vnc.html
A
07:04
Android Security & Malware
Detailed analysis of Android Spyware spread via URL links as Google Play
https://github.com/cynychwr/android-malware/tree/main/samples/Backdoor/com.gmrdc.keep
A
08:14
Android Security & Malware
Oscorp evolves into UBEL: an advanced Android malware spreading across the globe
https://www.cleafy.com/cleafy-labs/ubel-oscorp-evolution
30 July 2021
A
03:17
Android Security & Malware
XXE in Public Transport Ticketing Mobile APP
https://blog.niksthehacker.com/xxe-in-public-transport-ticketing-mobile-app-81ae245c01a1
A
08:43
Android Security & Malware
NSA guidance how to secure wireless devices
https://media.defense.gov/2021/Jul/29/2002815141/-1/-1/0/CSI_SECURING_WIRELESS_DEVICES_IN_PUBLIC.PDF
3 August 2021
A
04:42
Android Security & Malware
ProtonMail : forensic decryption of iOS App
https://xperylab.medium.com/protonmail-forensic-decryption-of-ios-app-8e9ae9f50953
5 August 2021
A
05:26
Android Security & Malware
Facebook Messenger for Android indirect thread deletion vulnerability
https://servicenger.com/blog/mobile/android/facebook-messenger-for-android-indirect-thread-deletion/
10 August 2021
A
04:54
Android Security & Malware
FlyTrap Android Malware Compromises Thousands of Facebook Accounts
https://blog.zimperium.com/flytrap-android-malware-compromises-thousands-of-facebook-accounts/
A
08:21
Android Security & Malware
Size Matters — CVE-2021–0485 (High) https://valsamaras.medium.com/size-matters-cve-2021-0485-cfa0a291f903
11 August 2021
A
10:12
Android Security & Malware
Bahamut Threat Group Targeting Users Through Phishing Campaign https://blog.cyble.com/2021/08/10/bahamut-threat-group-targeting-users-through-phishing-campaign/
12 August 2021
A
04:04
Android Security & Malware
Solving CTF with Frida - Part 5 https://cmrodriguez.me/blog/hpandro-5/
16 August 2021
A
06:19
Android Security & Malware
Android security guides, roadmap, docs, courses, write-ups, and teryaagh https://github.com/Ralireza/Android-Security-Teryaagh
A
07:35
Android Security & Malware
How Android Application Sandbox works https://valsamaras.medium.com/the-application-sandbox-9abd09a5c6da
17 August 2021
A
03:34
Android Security & Malware
The second part of discovered vulnerabilities in pre-installed apps on Samsung devices
https://blog.oversecured.com/Two-weeks-of-securing-Samsung-devices-Part-2/
19 August 2021
A
10:47
Android Security & Malware
Reversing ActionSpy Android Malware https://0x00sec.org/t/reversing-actionspy-android-malware/26537
20 August 2021
A
07:22
Android Security & Malware
Analysis of Huawei’s OTA Fix For BootROM Vulnerabilities https://labs.taszk.io/articles/post/huawei_kirin990_bootrom_patch/
A
07:39
Android Security & Malware
Accept Facebook friend requests without unlocking your Android [Unpatched] https://seclists.org/fulldisclosure/2021/Aug/10
21 August 2021
A
05:00
Android Security & Malware
Common mistakes when using permissions in Android
https://blog.oversecured.com/Common-mistakes-when-using-permissions-in-Android/
25 August 2021
A
04:52
Android Security & Malware
Triada Trojan in WhatsApp mod
https://securelist.com/triada-trojan-in-whatsapp-mod/103679/
A
07:02
Android Security & Malware
From Pearl to Pegasus Bahraini Government Hacks Activists with NSO Group Zero-Click iPhone Exploits
https://citizenlab.ca/2021/08/bahrain-hacks-activists-with-nso-group-zero-click-iphone-exploits/
27 August 2021
A
04:24
Android Security & Malware
Solving Android CTF with Frida - Part 6
https://cmrodriguez.me/blog/hpandro-6/
30 August 2021
A
04:11
Android Security & Malware
Hacking Xiaomi's android apps - Part 1
http://blog.takemyhand.xyz/2021/07/hacking-on-xiaomis-android-apps.html
31 August 2021
A
09:25
Android Security & Malware
Internal of the Android kernel backdoor vulnerability CVE-2021-28663
http://translate.google.com/translate?hl=en&sl=auto&tl=en&u=https%3A%2F%2Fvul.360.net%2Farchives%2F263
1 September 2021
A
11:42
Android Security & Malware
Anubis Android Malware Analysis
https://0x1c3n.tech/anubis-android-malware-analysis
2 September 2021
A
05:02
Android Security & Malware
iOS Pentesting 101
https://cobalt.io/blog/ios-pentesting-101
A
06:27
Android Security & Malware
FTC Bans Stalkerware App SpyFone; Orders Company to Erase Secretly Stolen Data
https://thehackernews.com/2021/09/ftc-bans-stalkerware-app-spyfone-orders.html
A
09:02
Android Security & Malware
Vulnerability in WhatsApp could have allowed out-of-bounds read and write if a user applied specific image filters to a specially crafted image and sent the resulting image [CVE-2020-1910]
https://research.checkpoint.com/2021/now-patched-vulnerability-in-whatsapp-could-have-led-to-data-exposure-of-users/
A
12:07
Android Security & Malware
BRAKTOOTH: Causing Havoc on Bluetooth Link Manager
https://asset-group.github.io/disclosures/braktooth/
A
13:13
Android Security & Malware
INTRODUCING IHIDE – A NEW JAILBREAK DETECTION BYPASS TOOL
https://www.trustedsec.com/blog/introducing-ihide-a-new-jailbreak-detection-bypass-tool/
5 September 2021
A
05:57
Android Security & Malware
Phishing Android Malware Targets Taxpayers in India
Demo: https://www.instagram.com/reel/CTZwQM1Dbv8/
Research: https://www.mcafee.com/blogs/other-blogs/mcafee-labs/phishing-android-malware-targets-taxpayers-in-india
6 September 2021
A
04:14
Android Security & Malware
Malware found preinstalled in classic push-button phones sold in Russia
https://therecord.media/malware-found-preinstalled-in-classic-push-button-phones-sold-in-russia/
A
05:57
Android Security & Malware
ThatWebInspector - Enabled Web Inspector for all iOS apps
https://github.com/evilpenguin/ThatWebInspector
A
07:34
Android Security & Malware
Rudroid - Writing the World's worst Android Emulator in Rust
https://fuzzing.science/page/rudroid-worlds-worst-android-emulator/
7 September 2021
A
10:13
Android Security & Malware
Analysis of Android espionage against Kurdish ethnic group using commercial 888 RAT that was distributed via dedicated Facebook profiles
https://www.welivesecurity.com/2021/09/07/bladehawk-android-espionage-kurdish/
10 September 2021
A
08:56
Android Security & Malware
Detailed report on new Android banker - S.O.V.A.

- discovered in August 2021
- includes a new feature - stealing session cookies

S.O.V.A in WebView displays legit targeted website for user to login and then steals account cookies
https://www.threatfabric.com/blogs/sova-new-trojan-with-fowl-intentions.html
13 September 2021
A
18:49
Android Security & Malware
FORCEDENTRY - NSO Group iMessage Zero-Click Exploit Captured in the Wild (CVE-2021-30860 - processing a maliciously crafted PDF may lead to arbitrary code execution)
https://citizenlab.ca/2021/09/forcedentry-nso-group-imessage-zero-click-exploit-captured-in-the-wild/
14 September 2021
A
04:19
Android Security & Malware
Android malware distributed in Mexico uses Covid-19 to steal financial credentials
https://www.mcafee.com/blogs/other-blogs/mcafee-labs/android-malware-distributed-in-mexico-uses-covid-19-to-steal-financial-credentials/
A
10:00
Android Security & Malware
Flubot’s Smishing Campaigns under the Microscope
https://www.telekom.com/en/blog/group/article/flubot-under-the-microscope-636368
15 September 2021
A
18:02
Android Security & Malware
Analyzing The ForcedEntry Zero-Click iPhone Exploit Used By Pegasus
https://www.trendmicro.com/en_us/research/21/i/analyzing-pegasus-spywares-zero-click-iphone-exploit-forcedentry.html
16 September 2021
A
05:30
Android Security & Malware
Another analysis of S.O.V.A. Android Banking Trojan
https://blog.cyble.com/2021/09/14/deep-dive-analysis-of-s-o-v-a-android-banking-trojan/
A
12:11
Android Security & Malware
iOS on QEMU
https://github.com/alephsecurity/xnu-qemu-arm64
A
17:56
Android Security & Malware
iOS14.8: Patch CVE-2021-1740 again silently
https://jhftss.github.io/CVE-2021-1740-Invalid-Patch/
17 September 2021
A
12:16
Android Security & Malware
Joker Unleashes Itself Again on Google Play Store
https://labs.k7computing.com/index.php/joker-unleashes-itself-again-on-google-play-store/
19 September 2021
A
05:57
Android Security & Malware
Python r2pipe script to automatically create a Frida hook to intercept TLS traffic for Flutter based apps
https://github.com/Hamz-a/boring-flutter
20 September 2021
A
05:08
Android Security & Malware
Google will auto-reset unused permissions for billion Android apps
https://android-developers.googleblog.com/2021/09/making-permissions-auto-reset-available.html
21 September 2021
A
10:24
Android Security & Malware
Researcher discloses iPhone lock screen bypass on iOS 15 launch day
https://therecord.media/researcher-discloses-iphone-lock-screen-bypass-on-ios-15-launch-day/
23 September 2021
A
06:45
Android Security & Malware
Burp Suite Mobile Assistant for testing iOS apps with Burp Suite
https://portswigger.net/burp/documentation/desktop/tools/mobile-assistant/installing
A
08:21
Android Security & Malware
A Stalkerware Firm Is Leaking Real-Time Screenshots of People's Phones Online
https://www.vice.com/en/article/m7ezj8/stalkerware-leaking-phone-screenshots-pctattletale
24 September 2021
A
05:52
Android Security & Malware
TangleBot aka Medusa: New Advanced SMS Malware Targets Mobile Users Across U.S. and Canada with COVID-19 Lures
https://www.cloudmark.com/en/blog/mobile/tanglebot-new-advanced-sms-malware-targets-mobile-users-across-us-and-canada-covid-19
A
09:32
Android Security & Malware
Disclosure of three 0-day iOS vulnerabilities and critique of Apple Security Bounty program
https://habr.com/ru/post/579714/
A
10:34
Android Security & Malware
ERMAC - another Android banking trojan based on Cerberus leaked code
https://www.threatfabric.com/blogs/ermac-another-cerberus-reborn.html
27 September 2021
A
07:14
Android Security & Malware
Waydroid - a container-based approach to boot a full Android system on a regular GNU/Linux system like Ubuntu
https://github.com/waydroid/waydroid
A
07:48
Android Security & Malware
Assessing the Effectiveness of the Shared Responsibility Model for Cloud Databases: the Case of Google’s Firebase
https://drive.google.com/file/d/1QkuRusjw82pQVJOJXiosYMe-x742SR-M/view
A
09:49
Android Security & Malware
In iOS 15, the iPhone is findable even when “Powered off”
https://twitter.com/craiu/status/1442412803546099713
28 September 2021
A
10:00
Android Security & Malware
How malware gets into the App Store and why Apple can't stop that
https://habr.com/ru/post/580272/
29 September 2021
A
07:50
Android Security & Malware
PixStealer: a new wave of Android banking Trojans abusing Accessibility Services
https://research.checkpoint.com/2021/pixstealer-a-new-wave-of-android-banking-trojans-abusing-accessibility-services/
A
11:39
Android Security & Malware
GriftHorse Android Trojan Steals Millions from Over 10 Million Victims Globally
https://blog.zimperium.com/grifthorse-android-trojan-steals-millions-from-over-10-million-victims-globally/
30 September 2021
A
09:48
Android Security & Malware
Apple Pay flaw risks letting hackers drain money from locked iPhones
Video demo: https://youtu.be/jznZNEslVik
Article: https://news.sky.com/story/apple-pay-users-should-not-use-visa-as-transport-payment-card-security-experts-warn-12421336
1 October 2021
A
04:09
Android Security & Malware
How "Find My" works while iPhone is powered off
https://naehrdine.blogspot.com/2021/09/always-on-processor-magic-how-find-my.html
2 October 2021
A
07:04
Android Security & Malware
r2flutch - tool to decrypt iOS apps using r2frida https://github.com/as0ler/r2flutch
4 October 2021
A
05:12
Android Security & Malware
Text message scam infecting Android phones with FluBot
https://www.cert.govt.nz/individuals/news-and-events/parcel-delivery-text-message-infecting-android-phones/
6 October 2021
A
14:38
Android Security & Malware
Bug found in Android Telegram: Messages that should be auto-deleted from participants in private and private group chats were only 'deleted' visually [in the messaging window], but in reality, picture messages remained on the device in the cache (CVE-2021-41861) https://arstechnica.com/information-technology/2021/10/researcher-refuses-telegrams-bounty-award-discloses-auto-delete-bug/
11 October 2021
A
04:50
Android Security & Malware
Disabling ASLR on 64-bit iOS
https://bellis1000.medium.com/disabling-aslr-on-64-bit-ios-3567a993a459
A
05:30
Android Security & Malware
Waydro - Android on Linux (boot a full Android system on a regular GNU/Linux system like Ubuntu)
https://waydro.id/
A
07:16
Android Security & Malware
Are iPhones Really Better for Privacy? Comparative Study of iOS and Android Apps
https://arxiv.org/abs/2109.13722
A
09:19
Android Security & Malware
Togo: Prominent activist targeted with Indian-made Android spyware linked to Donot Team hacker group (APT-C-35)
Article: https://www.amnesty.org/en/latest/news/2021/10/togo-activist-targeted-with-spyware-by-notorious-hacker-group/
Full report: https://www.amnesty.org/en/documents/afr57/4756/2021/en/
A
18:49
Android Security & Malware
PoC for today's patched iPhone 0-day vulnerability in IOMobileFrameBuffer/AppleCLCD that has been exploited in the wild (CVE-2021-30883)
https://saaramar.github.io/IOMFB_integer_overflow_poc/
12 October 2021
A
10:13
Android Security & Malware
Malicious apps found on Google Play Store could steal Facebook credentials by injecting JavaScript in WebView while facebook[.]com has been displayed
https://www.bleepingcomputer.com/news/security/photo-editor-android-app-still-sitting-on-google-play-store-is-malware/
13 October 2021
A
07:45
Android Security & Malware
Demonstration how Android malware steals recovery phrase from Trust Crypto Wallet without user interaction and restricts access to victims smartphone
https://youtu.be/cI9GbhspMYY
14 October 2021
A
05:50
Android Security & Malware
CVE-2021-30858: Use-after-free in WebKit affecting pre-Safari 14.1.2, pre-iOS 14.8
https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-30858.html
A
06:14
Android Security & Malware
A threat analysis of sideloading by Apple

There are 31 pages explaining why Apple will not allow sideloading apps on iOS
https://www.apple.com/privacy/docs/Building_a_Trusted_Ecosystem_for_Millions_of_Apps_A_Threat_Analysis_of_Sideloading.pdf
A
07:06
Android Security & Malware
Malware bypassing OTP-based authentication to target Indian Banking customers
https://blog.cyble.com/2021/10/13/malware-bypassing-otp-based-authentication-to-target-indian-banking-customers/
A
08:40
Android Security & Malware
CryptoRomance fake iOS cryptocurrency apps hit US, European victims for at least $1.4 million
https://news.sophos.com/en-us/2021/10/13/cryptorom-fake-ios-cryptocurrency-apps/
15 October 2021
A
05:47
Android Security & Malware
Google's Threat Analysis Group (TAG) found an attempt to upload Android spyware to Google Play Store disguised as a VPN app. It was part of APT35 group.
https://blog.google/threat-analysis-group/countering-threats-iran/
19 October 2021
A
05:44
Android Security & Malware
The Challenges of Fuzzing 5G Protocols (NGAP, GTPU, PFCP, & DIAMETER)

Network fuzzers used:
- Fuzzowski
- Frizzer
- AFLNet
https://research.nccgroup.com/2021/10/11/the-challenges-of-fuzzing-5g-protocols/
20 October 2021
A
20:19
Android Security & Malware
Android Exploits 101 workshop
Overview of the modern Android exploits with examples + goes over the common flows of Android exploits
[video] https://youtu.be/squuwVQiPgg
21 October 2021
A
06:35
Android Security & Malware
Oversecured released an iOS app vulnerability scanner

iOS vulnerability list: https://oversecured.com/vulnerabilities#iOS
Vulnerable app: https://github.com/oversecured/ovia
Report: https://content.oversecured.com/oversecured_sample_report_ios.pdf
A
08:27
Android Security & Malware
Minecraft was the most commonly used game title for masking cyber threats on mobile platforms between July 1, 2020, and June 30, 2021.

Upwards of 44 thousand gamers were affected, with close to 303 thousand unique detections
https://atlasvpn.com/blog/minecraft-most-malware-infected-game-on-the-market-with-228k-users-affected
A
12:03
Android Security & Malware
reFlutter - Flutter apps traffic monitoring
Make app trust installed certificates by repacking it with reFlutter and use Burp Suite. No root, no VPN.
https://github.com/ptswarm/reFlutter
22 October 2021
25 October 2021
A
05:44
Android Security & Malware
New York Times Journalist Ben Hubbard Hacked with iOS Pegasus after Reporting on Previous Hacking Attempts
https://citizenlab.ca/2021/10/breaking-news-new-york-times-journalist-ben-hubbard-pegasus/
A
13:27
Android Security & Malware
Location Data Firm Got GPS Data From Apps Even When People Opted Out (Huq SDK)
https://www.vice.com/en/article/5dgmqz/huq-location-data-opt-out-no-consent
26 October 2021
A
04:17
Android Security & Malware
Android fraud campaign (UltimaSMS) with 151 apps reached 10.5 million installs was used to subscribe users to premium SMS subscription services without their knowledge. 80 of them were on Google Play Store.
https://blog.avast.com/premium-sms-scam-apps-on-play-store-avast
A
06:01
Android Security & Malware
How to exploit a double free vulnerability in 2021. 'Use-After-Free for Dummies'
https://github.com/stong/how-to-exploit-a-double-free
28 October 2021
A
04:45
Android Security & Malware
Use-After-Free in Voice Control: CVE-2021-30902 Write-up
https://blog.zecops.com/research/use-after-free-in-voice-control-cve-2021-30902/
A
07:14
Android Security & Malware
Android spyware apps target Israel in three-year-long campaign (APT-C-23)
https://www.bleepingcomputer.com/news/security/android-spyware-apps-target-israel-in-three-year-long-campaign/
A
08:37
Android Security & Malware
iPhone Apps Can Tell Many Things About You Through the Accelerometer
https://www.mysk.blog/2021/10/24/accelerometer-ios/
29 October 2021
A
03:56
Android Security & Malware
Android AbstractEmu Malware: Rooting Malware Makes a Comeback
https://blog.lookout.com/lookout-discovers-global-rooting-malware-campaign
30 October 2021
A
04:39
Android Security & Malware
Android security checklist: WebView
https://blog.oversecured.com/Android-security-checklist-webview/
6 November 2021
7 November 2021
A
18:46
Android Security & Malware
Mobile App Hardening Against RE
https://github.com/su-vikas/Presentations/blob/main/Sincon2021.MobileAppHardeningRE.pdf
8 November 2021
A
06:48
Android Security & Malware
Mobile malware activity - Threat Intelligence Report 2021 by Nokia
https://onestore.nokia.com/asset/210870
9 November 2021
A
13:10
Android Security & Malware
Sophos threat report (Flubot, fake iPhone finance apps, Joker)
https://www.sophos.com/en-us/medialibrary/pdfs/technical-papers/sophos-2022-threat-report.pdf
10 November 2021
A
05:29
Android Security & Malware
Evaluating Physical-Layer BLE Location Tracking Attacks on Mobile Devices
https://cseweb.ucsd.edu//~nibhaska/papers/sp22_paper.pdf
A
07:05
Android Security & Malware
Targeted SMiShing Attacks on Indian Banking Users
https://labs.k7computing.com/index.php/targeted-smishing-attacks-on-indian-banking-users/
11 November 2021
A
05:48
Android Security & Malware
PhoneSpy: The App-Based Cyberattack Snooping South Korean Citizens
https://blog.zimperium.com/phonespy-the-app-based-cyberattack-snooping-south-korean-citizens/
A
07:16
Android Security & Malware
BrakTooth Proof of Concept Tool Demonstrates Bluetooth Vulnerabilities

BrakTooth—originally disclosed in August 2021—is a family of security vulnerabilities in commercial Bluetooth stacks. An attacker could exploit BrakTooth vulnerabilities to cause a range of effects from denial-of-service to arbitrary code execution.
https://github.com/Matheus-Garbelini/braktooth_esp32_bluetooth_classic_attacks
12 November 2021
A
10:01
Android Security & Malware
The Art of Exploiting UAF by Ret2bpf in Android Kernel [slides][whitepaper]
https://www.blackhat.com/eu-21/briefings/schedule/#the-art-of-exploiting-uaf-by-retbpf-in-android-kernel-24544
10:01
Re-route Your Intent for Privilege Escalation: A Universal Way to Exploit Android PendingIntents in High-profile and System Apps [slides]
https://www.blackhat.com/eu-21/briefings/schedule/index.html#re-route-your-intent-for-privilege-escalation-a-universal-way-to-exploit-android-pendingintents-in-high-profile-and-system-apps-24340
13 November 2021
A
07:18
Android Security & Malware
SharkBot: a new generation of Android Trojans is targeting banks in Europe
https://www.cleafy.com/cleafy-labs/sharkbot-a-new-generation-of-android-trojan-is-targeting-banks-in-europe
A
10:49
Android Security & Malware
Mobile malware mimicking framework #blackhat
https://maxkersten.nl/wp-content/uploads/2021/11/BHEU21_m3.pdf
14 November 2021
A
05:17
Android Security & Malware
Armv8 / AArch64 Assembly Cheatsheet
https://azeria.gumroad.com/l/aarch64-cheatsheet
A
10:35
Android Security & Malware
Remotely and permanent crash of Mapillary Android app #DoS #Facebook
https://pathleax.medium.com/this-is-how-i-was-able-to-permanently-crash-all-mapillary-users-within-minutes-c7276def5a94
A
12:29
Android Security & Malware
How to Write Frida Hook For Android
https://github.com/cyberheartmi9/Frida-Guide/blob/main/Frida%20Guide/Frida%20Guide.md
16 November 2021
A
10:57
Android Security & Malware
How to compile QEMU support to AFL++ on Android #fuzzing
https://alephsecurity.com/2021/11/16/fuzzing-qemu-android/
19 November 2021
A
04:49
Android Security & Malware
Xcode Tips for iOS Security Researcher
https://proteas.github.io/xcode/2021/11/18/xcode-tips-for-ios-security-researcher.html
A
07:33
Android Security & Malware
BrazKing Android Malware Upgraded and Targeting Brazilian Banks
https://securityintelligence.com/posts/brazking-android-malware-upgraded-targeting-brazilian-banks/
20 November 2021
A
07:12
Android Security & Malware
Android Security Workshop
https://valsamaras.medium.com/android-security-workshop-5eadeb50fba
A
08:16
Android Security & Malware
What can a cyber criminal learn about you using your mobile number?
https://www.proofpoint.com/us/blog/email-and-cloud-threats/what-can-cyber-criminal-learn-about-you-using-your-mobile-number
23 November 2021
A
05:35
Android Security & Malware
New version of JADX 1.3.0 decompiler has been released
https://github.com/skylot/jadx/releases
A
06:07
Android Security & Malware
Reverse engineering & modifying Android apps with JADX & Frida
https://httptoolkit.tech/blog/android-reverse-engineering/
A
07:31
Android Security & Malware
Keybase App Vulnerability: Incomplete Cleanup of Messages In Keybase for Android/iOS, CVE-2021-34421
https://www.oliviaohara.com/keybase
A
10:27
Android Security & Malware
New trojan detected in 190 games on AppGallery app catalog
https://news.drweb.com/show/?i=14360&lng=en&c=5
A
19:13
Android Security & Malware
Android APT spyware, targeting Middle East victims, enhances evasiveness
https://news.sophos.com/en-us/2021/11/23/android-apt-spyware-targeting-middle-east-victims-improves-its-capabilities/
24 November 2021
A
08:50
Android Security & Malware
Apple sues spyware firm NSO Group
https://www.apple.com/newsroom/2021/11/apple-sues-nso-group-to-curb-the-abuse-of-state-sponsored-spyware/
25 November 2021
A
10:53
Android Security & Malware
Bugs discovered in MediaTek chips affect 37% of smartphones and IoT devices
https://research.checkpoint.com/2021/looking-for-vulnerabilities-in-mediatek-audio-dsp/
27 November 2021
A
06:52
Android Security & Malware
Root shell vulnerability found in OnePlus Nord 2 It grants root shell access within minutes on a locked bootloader, without a data wipe
https://www.xda-developers.com/oneplus-nord-2-vulnerability-root-shell/
A
10:51
Android Security & Malware
PGSharp: Analysis of a Cheating App for PokemonGO
https://www.romainthomas.fr/post/21-11-pgsharp-analysis/
28 November 2021
A
09:22
Android Security & Malware
North Korean hackers posed as Samsung recruiters to target security researchers
https://therecord.media/north-korean-hackers-posed-as-samsung-recruiters-to-target-security-researchers/
29 November 2021
A
05:40
Android Security & Malware
Mobile threat statistics in Q3 2021 by Kaspersky
https://securelist.com/it-threat-evolution-in-q3-2021-mobile-statistics/105020/
A
11:18
Android Security & Malware
300.000+ infections via Droppers on Google Play Store
https://threatfabric.com/blogs/deceive-the-heavens-to-cross-the-sea.html
30 November 2021
A
07:57
Android Security & Malware
Android Chinotto multiplatform malware used in espionage campaign by North Korea (Group name: ScarCruft AKA APT37 AKA TempReaper)
https://securelist.com/scarcruft-surveilling-north-korean-defectors-and-human-rights-activists/105074/
A
09:06
Android Security & Malware
Doctor Web discovered vulnerabilities in children’s smart watches (Elari Kidphone 4G Smartwatch, Wokka Lokka Q50 Smartwatch, Elari FixiTime Lite Smartwatch, Smart Baby Watch Q19 Smartwatch)

Blog: https://news.drweb.com/show/?i=14350&lng=en&c=5
Report: https://f2.drweb.com/get+meta+file/?k=271caf73c9901a0a5ab997757ec10c88
1 December 2021
A
09:20
Android Security & Malware
Smishing Android Botnets Going Viral in Iran
https://research.checkpoint.com/2021/smishing-botnets-going-viral-in-iran/
2 December 2021
A
06:01
Android Security & Malware
Android: vold's incremental-fs APIs trust paths from system_server for mounting (CVE-2022-20002)
https://bugs.chromium.org/p/project-zero/issues/detail?id=2221
A
07:18
Android Security & Malware
Analysis of request forgery using Android deep link in CafeBazaar app
https://securityflow.io/impact-of-an-insecure-deep-link/
3 December 2021
A
05:52
Android Security & Malware
Popular Android malware threats discovered in November, 2021
Full list - https://sk3ptre.github.io/Malware-Timeline-2021/
Download samples - https://github.com/sk3ptre/AndroidMalware_2021
6 December 2021
A
05:38
Android Security & Malware
Mobile banking fraud: BRATA strikes again
https://www.cleafy.com/cleafy-labs/mobile-banking-fraud-brata-strikes-again
A
12:38
Android Security & Malware
Vulnerability found in Android/Linux kernel leads to use-after-free (CVE-2021-1048)
https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1048.html
8 December 2021
A
07:26
Android Security & Malware
Mobile espionage in Palestine Region by APT-C-23 group
https://raw.githubusercontent.com/T-SecLab/APT-C-23/main/cyber%20espionage%20in%20palestine%20region%20.pdf
11 December 2021
A
12:32
Android Security & Malware
How a bug in Android and Microsoft Teams could have caused this user’s 911 call to fail
https://medium.com/@mmrahman123/how-a-bug-in-android-and-microsoft-teams-could-have-caused-this-users-911-call-to-fail-6525f9ba5e63
16 December 2021
A
06:01
Android Security & Malware
Use cryptography in mobile apps the right way
https://blog.oversecured.com/Use-cryptography-in-mobile-apps-the-right-way/
A
06:17
Android Security & Malware
A deep dive into an NSO zero-click iMessage exploit: Remote Code Execution
https://googleprojectzero.blogspot.com/2021/12/a-deep-dive-into-nso-zero-click.html
17 December 2021
A
10:25
Android Security & Malware
Pegasus vs. Predator Dissident’s Doubly-Infected iPhone Reveals Cytrox Mercenary Spyware
https://citizenlab.ca/2021/12/pegasus-vs-predator-dissidents-doubly-infected-iphone-reveals-cytrox-mercenary-spyware/
21 December 2021
A
07:37
Android Security & Malware
Android Application Testing Using Windows 11 and Windows Subsystem for Android
https://sensepost.com/blog/2021/android-application-testing-using-windows-11-and-windows-subsystem-for-android/
22 December 2021
A
06:30
Android Security & Malware
A simple frida script for iOS apps that spits out API request URLs, headers and body even if SSL pinning is enabled
https://github.com/bhavukjain1/frida_helper/blob/7eb165d23980c84eb9aab5b975738bee296b6ac2/spit_ios.js
A
12:36
Android Security & Malware
Bluetooth-using home COVID test was cracked to fake results
https://labs.f-secure.com/blog/faking-a-positive-covid-test
23 December 2021
A
09:52
Android Security & Malware
IP address leak (Android), and denial of service (DoS) dubbed Message of Death (Android) found in Android Microsoft Teams app https://positive.security/blog/ms-teams-1-feature-4-vulns
27 December 2021
A
03:31
Android Security & Malware
Malicious App Targets Major Brazilian Bank Itaú Unibanco
https://blog.cyble.com/2021/12/23/malicious-app-targets-major-brazilian-bank-itau-unibanco/
28 December 2021
A
10:51
Android Security & Malware
Samsung's Galaxy Store is distributing apps that could infect phones with malware
https://www.androidpolice.com/samsung-galaxy-store-malware-movie-piracy-showbox/
29 December 2021
A
08:37
Android Security & Malware
Android Tor Browser Thumbnails. What?
https://abrignoni.blogspot.com/2021/12/tor-thumbnails-what.html
30 December 2021
A
16:43
Android Security & Malware
Android Component Security
https://www.hebunilhanli.com/wonderland/mobile-security/android-component-security/
4 January 2022
A
18:00
Android Security & Malware
A Memory Visualiser Tool for iOS Security Research
https://bellis1000.medium.com/a-memory-visualiser-tool-for-ios-security-research-bd8bb8c334c6
A
18:32
Android Security & Malware
ReDroid - Android in Docker without QEMU/emulator https://github.com/remote-android/redroid-doc
5 January 2022
A
06:46
Android Security & Malware
Facebook android webview vulnerability: Execute arbitrary javascript (xss) and load arbitrary website
https://servicenger.com/mobile/facebook-android-webview-vulnerability/
A
07:02
Android Security & Malware
Meet “NoReboot”: The iOS Ultimate Persistence Bug
https://blog.zecops.com/research/persistence-without-persistence-meet-the-ultimate-persistence-bug-noreboot/
10 January 2022
11 January 2022
A
10:25
Android Security & Malware
Real-world Android Malware Analysis 1: SMS spy
https://www.purpl3f0xsecur1ty.tech/2022/01/10/eblagh-re.html
12 January 2022
A
10:26
Android Security & Malware
Building userDebug Android images with root access and debug capabilities for a Google Pixel (sailfish)
https://www.linkedin.com/pulse/building-userdebug-android-images-google-pixel-sailfish-basanta
13 January 2022
A
05:00
Android Security & Malware
Poland: Use of Pegasus spyware to hack politicians highlights threat to civil society
https://www.amnesty.org/en/latest/news/2022/01/poland-use-of-pegasus-spyware-to-hack-politicians-highlights-threat-to-civil-society/
A
10:56
Android Security & Malware
Project Torogoz - Extensive Hacking of Media & Civil Society in El Salvador with Pegasus Spyware
https://citizenlab.ca/2022/01/project-torogoz-extensive-hacking-media-civil-society-el-salvador-pegasus-spyware/
14 January 2022
A
10:26
Android Security & Malware
RCE in Adobe Acrobat Reader for Android (CVE-2021-40724)
analysis: https://hulkvision.github.io/blog/post1/
A
16:17
Android Security & Malware
Here is exploitation flow of RCE in Adobe Acrobat Reader for Android (CVE-2021-40724)
A
20:40
Android Security & Malware
Multidex trick to unpack Android BianLian malware family
https://cryptax.medium.com/multidex-trick-to-unpack-android-bianlian-ed52eb791e56
17 January 2022
A
18:50
Android Security & Malware
Analysis of BianLian Part 2: commands & modules
https://cryptax.medium.com/android-bianlian-payload-61febabed00a
20 January 2022
A
05:20
Android Security & Malware
AERoot - command line tool that allows you to give root privileges on-the-fly to any process running on the Android emulator with Google Play flavors AVDs
https://github.com/quarkslab/AERoot
24 January 2022
A
19:17
Android Security & Malware
Analysis of Android banking malware - BRATA
https://www.cleafy.com/cleafy-labs/how-brata-is-monitoring-your-bank-account
25 January 2022
A
05:47
Android Security & Malware
Android CapraRAT analysis - part of APT36 group (politically motivated advanced persistent threat (APT) group, has historically targeted Indian military and diplomatic resources)
https://www.trendmicro.com/en_us/research/22/a/investigating-apt36-or-earth-karkaddans-attack-chain-and-malware.html
A
09:18
Android Security & Malware
Android Interruptor - human-friendly interrupts hook library based on Frida's Stalker
https://github.com/FrenchYeti/interruptor
26 January 2022
A
08:02
Android Security & Malware
Doctor Web’s overview of virus activity on mobile devices in 2021
https://news.drweb.com/show/review/?i=14395&lng=en
27 January 2022
A
04:55
Android Security & Malware
Dark Herring - Financially Motivated Mobile Scamware Exceeds 100M Installations
https://blog.zimperium.com/dark-herring-android-scamware-exceeds-100m-installations/
A
05:21
Android Security & Malware
TianySpy - new mobile malware infection chain targeting both Android and iPhone device
https://www.trendmicro.com/en_us/research/22/a/tianyspy-malware-uses-smishing-disguised-as-message-from-telco.html
A
05:46
Android Security & Malware
IOMobileFrameBuffer vulnerability in iPhone 6s and later (until iOS 15.3) has been actively exploited (CVE-2022-22587)

Impact: A malicious application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited
https://support.apple.com/en-us/HT213053
A
09:17
Android Security & Malware
New FluBot and TeaBot Global Malware Campaigns Discovered
https://www.bitdefender.com/blog/labs/new-flubot-and-teabot-global-malware-campaigns-discovered
30 January 2022
A
19:05
Android Security & Malware
Facestealer – The Rise of Facebook Credential Stealer Malware
https://labs.k7computing.com/index.php/facestealer-the-rise-of-facebook-credential-stealer-malware/
31 January 2022
A
04:54
Android Security & Malware
Malicious app on Google Play drops banking malware on users’ devices
https://blog.pradeo.com/vultur-malware-dropper-google-play
1 February 2022
A
18:42
Android Security & Malware
How Android updates work: A peek behind the curtains from an insider
https://medium.com/@Za_Raczke/how-android-updates-work-a-peek-behind-the-curtains-from-an-insider-1d8e1a48ec0b
2 February 2022
A
05:27
Android Security & Malware
How to bypass root detection and SSL pinning on Android and iOS using Frida and Objection
https://securitycafe.ro/2022/02/01/root-detection-and-ssl-pinning-bypass/
3 February 2022
A
05:50
Android Security & Malware
A Primer On Android Forensics
https://nex.sx/tech/2022/01/28/a-primer-on-android-forensics.html
4 February 2022
A
05:40
Android Security & Malware
Abusing Facebooks Call To Action to launch internal deeplinks
https://www.ash-king.co.uk/blog/abusing-Facebooks-call-to-action-to-launch-internal-deeplinks
A
15:38
Android Security & Malware
Diving Deeper in Android System Diagnostics and Remote Forensics
https://nex.sx/tech/2022/02/04/diving-deeper-in-android-system-diagnostics.html
6 February 2022
A
10:49
Android Security & Malware
How to build a Cellphone IMSI Catcher (Stingray)
https://www.hackers-arise.com/post/software-defined-radio-part-6-building-a-imsi-catcher-stingray
7 February 2022
A
20:38
Android Security & Malware
FluBot and Medusa Android banking Trojans attack banks side-by-side via SMiShing
https://www.threatfabric.com/blogs/partners-in-crime-medusa-cabassous.html#medusa-turkish-delight-with-dangerous-filling
8 February 2022
A
05:22
Android Security & Malware
Malicious campaign Roaming Mantis (Wroba.o, Moqhao, XLoader) reaches Europe via SMiShing targeting Android and iOS
https://securelist.com/roaming-mantis-reaches-europe/105596/
9 February 2022
A
15:16
Android Security & Malware
Zero-Click RCE Exploit for the Peloton Bike (And Also Every Other Unpatched Android Device)
https://www.nowsecure.com/blog/2022/02/09/a-zero-click-rce-exploit-for-the-peloton-bike-and-also-every-other-unpatched-android-device/
10 February 2022
A
09:34
Android Security & Malware
SIM Hijacking
https://sensepost.com/blog/2022/sim-hijacking/
14 February 2022
A
05:28
Android Security & Malware
Google awarded $8.7 million to 696 security researchers in 2021

Highest reward - $157,000 by discovering critical exploitation chain in Android (CVE-2021-39698)

- $3 million went to Android vulnerabilities
- $3.3 million went to Chrome browser bugs
- $0.5 million went to Google Play Store vulnerabilities
- $0.313 million went to Google Cloud bugs.
https://security.googleblog.com/2022/02/vulnerability-reward-program-2021-year.html
16 February 2022
A
13:00
Android Security & Malware
apkingo - get detailed information about apk files

I retrieves: package name, target SDK, permissions, metadata, certificate serial and issuer, info from Google Play Store and detect if it is malicious using Koodous
https://github.com/andpalmier/apkingo
19 February 2022
A
10:25
Android Security & Malware
How to Bypass Jailbreak Detection On iOS Apps & Games (iOS 11 - iOS 14)
https://idevicecentral.com/jailbreak-guide/how-to-bypass-jailbreak-detection-on-ios-applications-and-games-ios-11-ios-14/
A
10:40
Android Security & Malware
WiFi Zero Click RCE Trigger PoC CVE-2021-1965
https://github.com/parsdefense/CVE-2021-1965
A
16:40
Android Security & Malware
Collection of Android (Samsung) Security Related Resources https://github.com/NetKingJ/android-security-awesome
21 February 2022
A
06:56
Android Security & Malware
SMS PVA Services' Use of Infected Android Phones Reveals Flaws in SMS Verification
https://www.trendmicro.com/en_us/research/22/b/sms-pva-services-use-of-infected-android-phones-reveals-flaws-in-sms-verification.html
A
12:39
Android Security & Malware
Mobile malware evolution 2021 by Kaspersky
https://securelist.com/mobile-malware-evolution-2021/105876/
22 February 2022
A
05:09
Android Security & Malware
Xenomorph: A newly hatched Banking Trojan
https://www.threatfabric.com/blogs/xenomorph-a-newly-hatched-banking-trojan.html
A
13:23
Android Security & Malware
Xenomorph - new Android Banker - here is a quick video how smoothly it creates malicious overlay once targeted app (PayPal, Binance, Coinbase etc.) are launched by victim
https://youtu.be/7-yT65lVBf8
24 February 2022
A
06:22
Android Security & Malware
Writeup for an iOS 15 exploit that can achieve kernel

Impact: A malicious application may be able to execute arbitrary code with kernel privileges (CVE-2021-30955)
https://www.cyberkl.com/cvelist/cvedetail/24
25 February 2022
A
17:38
Android Security & Malware
Directory traversal vulnerability discovered in Android Slack lead to disclosure of auth tokens https://hackerone.com/reports/1378889
27 February 2022
A
17:26
Android Security & Malware
Intercepting Android Emulator SSL traffic with burp using magisk
https://infosecwriteups.com/intercepting-android-emulator-ssl-traffic-with-burp-using-magisk-bc948dca68f9
28 February 2022
A
04:39
Android Security & Malware
How to execute running Java code directly on Android (without creating an APK)
Part 1: https://raccoon.onyxbits.de/blog/run-java-app-android/
Part 2: https://raccoon.onyxbits.de/blog/programmatically-talking-to-the-android-system-adb-shell/
A
07:28
Android Security & Malware
FireFox extension for generating Frida snippet scripts from official Android developer documentation

Right click on function names (public methods section) or fields and it will automatically copy generated Frida snippet
https://github.com/eybisi/android-developer-frida (no overload support for now)
A
13:50
Android Security & Malware
PoC for CVE-2021-30955 has been publicly released affecting iOS 15.2
Impact: A malicious application may be able to execute arbitrary code with kernel privileges
https://gist.github.com/jakeajames/37f72c58c775bfbdda3aa9575149a8aa
1 March 2022
A
06:06
Android Security & Malware
Bug found in Zenly - Social-Media App with 50M+ installs - Allowed Account Takeover
https://checkmarx.com/blog/zenly-fixes-user-data-exposure-and-account-takeover-risks/
A
19:22
Android Security & Malware
Smali2Frida - generate Frida Hooks from .smali files
https://github.com/apkunpacker/Smali2Frida
2 March 2022
A
05:02
Android Security & Malware
Another iOS 15.1 kernel exploit PoC for CVE-2021-30955
https://github.com/b1n4r1b01/desc_race
A
06:53
Android Security & Malware
Android TeaBot banking malware with 10K+ installs is still available on Google Play Store

QR Code downloads main.apk that drops payload and targets over 400 apps
https://www.cleafy.com/cleafy-labs/teabot-is-now-spreading-across-the-globe
A
07:43
Android Security & Malware
Android banking malware TeaBot with 10,000+ installs is still available on Google Play Store
Double check which QR code app you are about to install or are using already
https://youtube.com/shorts/FvuqEhI9LjQ
4 March 2022
A
06:07
Android Security & Malware
SharkBot - Two Android bankers discovered on Google Play ironically impersonate Antivirus apps
https://blog.fox-it.com/2022/03/03/sharkbot-a-new-generation-android-banking-trojan-being-distributed-on-google-play-store/
A
13:22
Android Security & Malware
New version of #AbereBot banking Trojan is rebranded as #Escobar and available for rent on underground market
https://twitter.com/LukasStefanko/status/1499659018066964481
7 March 2022
A
13:17
Android Security & Malware
Native2Frida - Give It Decompiled IDA Code and get Frida Script for All Functions which have Char as argument or return type as char
https://github.com/apkunpacker/Native2Frida
8 March 2022
A
05:18
Android Security & Malware
Jeb2Frida - JEB script to automatically generate a Frida hook for a given method
https://github.com/cryptax/misc-code/tree/master/jeb
A
11:34
Android Security & Malware
Dirty Pipe vulnerability affects Linux Kernel since 5.8 including Android (CVE-2022-0847)
This issue leads to LPE because unprivileged processes can inject code into root processes
Details and PoC exploit: https://dirtypipe.cm4all.com/
Demo of exploitation: https://www.instagram.com/p/Ca2JIOjgwF6/
A
18:40
Android Security & Malware
Reverse engineering of a trojanized medical app — Android/Joker
- 4 different stages of DEX & JARs https://cryptax.medium.com/live-reverse-engineering-of-a-trojanized-medical-app-android-joker-632d114073c1
9 March 2022
A
05:25
Android Security & Malware
A attacker can open a malicious url or 3rd party app in NextCloud Talk app https://hackerone.com/reports/1337178
12 March 2022
A
13:15
Android Security & Malware
Exploring the archived APKs powering Android’s new app archiving feature https://blog.esper.io/android-dessert-bites-16-app-archiving-857169/
15 March 2022
A
08:55
Android Security & Malware
iOS Hacking - A Beginner's Guide to Hacking iOS Apps [2022 Edition]
https://martabyte.github.io/ios/hacking/2022/03/13/ios-hacking-en.html
16 March 2022
A
11:17
Android Security & Malware
Global Mobile Threat Report for 2021:
-30% of the known, zero-day vulnerabilities discovered in 2021 targeted mobile devices
-466% increase in exploited, zero-day vulnerabilities used in active attacks against mobile endpoints
-75% of the phishing sites analyzed specifically targeted mobile devices
-2,034,217 new mobile malware samples were detected
https://blog.zimperium.com/global-mobile-threat-report-key-insights/
17 March 2022
A
05:07
Android Security & Malware
I created a Discord community for a better categorization and visibility of mobile InfoSec posts with option for you to participate and share or ask questions.
Join & share: https://discord.gg/ByrVsEvVTg
A
11:30
Android Security & Malware
Theft of protected files by 3rd party Android app from ownCloud application
https://hackerone.com/reports/1454002
18 March 2022
A
17:31
Android Security & Malware
Frida iOS video tutorials
Introduction to Frida and iOS, low-level iOS interfaces (GCD, XPC, IOKit, Mach), and Objective-C instrumentation
Part I: https://youtu.be/h070-YZKOKE
Part II: https://youtu.be/qpEIRe2CP-w
Part III: https://youtu.be/x48y2ehfWGE