Researchers have discovered a fake utility app called Swift Cleaner that they believe may be the first Android mobile malware developed using the open-source Kotlin programming language.
A newly discovered mobile adware program called LightsOut was recently observed in 22 fake Android flashlight and utility applications, reportedly prompting their removal from the Google Play Store.
A credentials-stealing malware program disguised as an Android app was recently found spoofing an Uber user interface, and even leveraging a deep link uniform resource identifier from the ride-sharing app to appear legitimate.
A newly discovered spyware that victimises Arabic-speakers has been potentially linked to the 2014-15 Sphinx cyber espionage campaign, which was launched by the threat group APT-C-15 to target PC users in the Middle East.
A serious vulnerability in Android could put millions of devices at risk from attackers modifying code in applications without affecting their signatures.
Checkpoint researchers discovered several vulnerabilities in Android application developer tools that put any organisation that does Java/Android development at risk of an outsider gaining access to their system.
Collectively downloaded millions of times, 158 fake Android applications containing mobile malware were recently found smuggled into the Google Play Store.
A new malware uses an updated methodology to abuse the previously patched Android Toast overlay vulnerability, which once installed, can download additional malware as well as use various permissions to access the phone.
An Android banking trojan dubbed LokiBot turns into a ransomware when users try to remove its admin privileges in a last ditch effort to extort the user.
The Sockbot malware has made its way into at least eight Apps in the Google Play Store with the intent of adding devices to botnets and performing DDoS attacks.
A new vulnerability has been discovered affecting older versions of the Google Android Platform.It can be used to easily enable an "overlay attack", tricking the user into unwittingly installing malware onto the device.
In the first half of 2017, incidences of Android malware increased more than five percent since the start of the year. Most notably, incidents of Android ransomware increased 138 percent in Q2 .
Highly sophisticated SpyDealer malware attacks Android operating systems and can exfiltrate data from a range of popular apps.
A new Microsoft Authenticator app feature sends device owners a notification when they sign in, rather than a one-time code to enter. Users simply tap an "Approve" button to access their accounts.
According to the researchers, the apps were infected with "tiny hidden iFrames that link to malicious domains in their local HTML pages".
With such low adoption rates of the latest security patches, security bods have said it is increasingly difficult to protect Android users who might not be tech-savvy enough out of harm's way.
In Case You Missed It: HMRC implements DMARC; Windows bug revealed; UK-China cooperation; ViperRat hacks Israeli defence; Supply-chain attack hidden
ViperRat discovered by researchers, designed to exfiltrate data from Israeli Defence Force via Android phones using honey traps.
In Case You Missed IT, this week's top stories on SCMedia were: Intel CPU vulnerability; German HR ransomware; Ransomware targets schools; Android most vulnerable; Exploding smart meters?
The Common Vulnerabilities and Exposures (CVE) statistics for 2016 are in and it doesn't make great reading for Google. Or does it? Davey Winder runs the numbers.
A newly discovered malware program that targets older versions of the Android OS has infected roughly 1.3 million Google accounts, currently breaching devices at a rate of 13,000 victims per day.
Comodo Threat Research Labs has recently detected the "Gugi/Fanta/Lime" family of financial malware within the Russian economic sector.
An international team of researchers have developed an exploit to "root" access Android phones made by LG, Samsung and Motorola using Rowhammer hardware attacks.
The Android SLocker ransomware family accounts for 16 percent of mobile malware in the UK.
The Android.Lockerscreen ransomware is now using pseudorandom numbers and other tactics to prevent victims from unlocking devices without paying.
Google Play continues to be a playground for cybercriminals with Google recently having to remove four apps from the store because they were distributing a new form of malware dubbed Overseer.
Google's Project Zero unveiled an Android hacking contest that aims to discover flaws on the Nexus 6P and 5X devices.
Researchers have found the first known Android mobile malware to use a Twitter account, rather than a traditional command-and-control server, to control infected devices.