Android News, Articles and Updates

Android Trojan steals data from Facebook, Skype, and Twitter messenger apps

Other instant messaging apps also targeted by malware. Researchers have discovered a new type of Android malware that steals data from instant messaging apps on Android devices.

Half a million infected with malware via Google Play QR code apps

Another day, some more Android malware, although this particular strain has a couple of ingenious tricks up its sleeve. A series of apparently innocent QR Code reader apps appear to have potentially compromised 500,000 users.

HenBox malware targets Chinese minority group

A new Android malware family dubbed HenBox is targeting a large online population based in China who have been the subject of numerous cyber-attacks in the past.

RedDrop malware runs up big bills on Android smartphones and spies on users

Researchers warn that malware could be used to blackmail users. New malware has been discovered that could eavesdrop on Android smartphone users and run up huge bills.

AndroRAT exposes fragmented Android ecosystem vulnerabilities

A new version of a familiar menace, AndroRAT, has emerged from out of the trash to exploit long forgotten vulnerabilities.

Drive-by cryptomining targeting millions of Android devices

Drive-by cryptomining campaigns were spotted targeting millions of Android devices via infected apps and malicious browser redirects.

ADB.Miner takes cryptominer mobile and beyond targeting Android devices

Malicious cryptominers are going mobile and beyond with a new botnet malware targeting Android-based devices that expose debug capabilities to the internet, for the purpose or mining Monero.

Mozilla patches unsanitised output flaw in Firefox

Mozilla patched an unsanitised output flaw in its Firefox browser user interface that could lead to arbitrary code execution.

EFF, Lookout uncover Dark Caracal spy group

A new threat actor named Dark Caracal working out of a building operated by the Lebanese General Directorate of General Security (GDGS) has been identified as being behind cyber-attacks hitting victims in more than 20 nations.

Not-so-super Sonic? Sega apps leak data to suspicious servers

Three Sonic the Hedgehog games for Android devices that collectively have been downloaded well over a hundred million times are leaking users' geolocation and device data to uncertified servers.

Researchers believe malicious Android app written in code may be a first

Researchers have discovered a fake utility app called Swift Cleaner that they believe may be the first Android mobile malware developed using the open-source Kotlin programming language.

New adware found in fake Flashlight apps with dark intentions

A newly discovered mobile adware program called LightsOut was recently observed in 22 fake Android flashlight and utility applications, reportedly prompting their removal from the Google Play Store.

Mobile credential-stealer uses deep link to mimic Uber app

A credentials-stealing malware program disguised as an Android app was recently found spoofing an Uber user interface, and even leveraging a deep link uniform resource identifier from the ride-sharing app to appear legitimate.

AnubisSpy malware steals data, seemingly links to old Sphinx campaign

A newly discovered spyware that victimises Arabic-speakers has been potentially linked to the 2014-15 Sphinx cyber espionage campaign, which was launched by the threat group APT-C-15 to target PC users in the Middle East.

Android Flaw could enable hackers to modify code without signature change

A serious vulnerability in Android could put millions of devices at risk from attackers modifying code in applications without affecting their signatures.

ParseDroid vulnerabilities could affect all Android developers

Checkpoint researchers discovered several vulnerabilities in Android application developer tools that put any organisation that does Java/Android development at risk of an outsider gaining access to their system.

Three more Android malware families invade Google Play Store

Collectively downloaded millions of times, 158 fake Android applications containing mobile malware were recently found smuggled into the Google Play Store.

ToastAmigo malware uses new twist to attack Toast overlay vulnerability

A new malware uses an updated methodology to abuse the previously patched Android Toast overlay vulnerability, which once installed, can download additional malware as well as use various permissions to access the phone.

LokiBot Android Banking Trojan turns into ransomware in last ditch effort

An Android banking trojan dubbed LokiBot turns into a ransomware when users try to remove its admin privileges in a last ditch effort to extort the user.

Android malware on Google Play grows botnets, launches DDoS attacks

The Sockbot malware has made its way into at least eight Apps in the Google Play Store with the intent of adding devices to botnets and performing DDoS attacks.

All pre-8.0 Androids vulnerable to overlay attack; mitigations toasted

A new vulnerability has been discovered affecting older versions of the Google Android Platform.It can be used to easily enable an "overlay attack", tricking the user into unwittingly installing malware onto the device.

Mac users under attack as never before- android ransomeware up 138%

In the first half of 2017, incidences of Android malware increased more than five percent since the start of the year. Most notably, incidents of Android ransomware increased 138 percent in Q2 .

SpyDealer Android malware steals data from Facebook, Skype, other apps

Highly sophisticated SpyDealer malware attacks Android operating systems and can exfiltrate data from a range of popular apps.

Secure log-ins on Android, iOS phones simplified by Microsoft Authenticator

A new Microsoft Authenticator app feature sends device owners a notification when they sign in, rather than a one-time code to enter. Users simply tap an "Approve" button to access their accounts.

Researchers find 132 apps on Play Store infected with iFrame malware

According to the researchers, the apps were infected with "tiny hidden iFrames that link to malicious domains in their local HTML pages".

Fragmentation-nation: only 1.2% of Android devices use latest OS

With such low adoption rates of the latest security patches, security bods have said it is increasingly difficult to protect Android users who might not be tech-savvy enough out of harm's way.

ICYMI: HMRC/DMARC; Windows Vul; UK-China; IDF hack; Vendor hid attack

In Case You Missed It: HMRC implements DMARC; Windows bug revealed; UK-China cooperation; ViperRat hacks Israeli defence; Supply-chain attack hidden

State-sponsored hackers turn to Android malware to spy on Israeli soldiers

ViperRat discovered by researchers, designed to exfiltrate data from Israeli Defence Force via Android phones using honey traps.

ICYMI: Intel CPU flaw; HR Ransomware; Schools ransomed; Android tops CVE, Meters explode?

In Case You Missed IT, this week's top stories on SCMedia were: Intel CPU vulnerability; German HR ransomware; Ransomware targets schools; Android most vulnerable; Exploding smart meters?

Android tops 2016 vulnerability list. Security industry says "meh!"

The Common Vulnerabilities and Exposures (CVE) statistics for 2016 are in and it doesn't make great reading for Google. Or does it? Davey Winder runs the numbers.