VulnHub

Articles tagged "Android"

Found 38 articles

ClayRat Android Spyware Expands Capabilities

Infosecurity Magazine

The article discusses a new version of ClayRat Android spyware that has enhanced surveillance and device-control capabilities, indicating an increase in the potential for unauthorized access to personal data. This development poses a significant risk to Android users, as the spyware may be used for malicious purposes such as spying and data theft.

Impact: Android devices

Remediation: Users are advised to install security updates, use reputable antivirus software, and avoid downloading apps from untrusted sources.

Android Malware

6 months ago

Read Original

GoldFactory Hits Southeast Asia with Modified Banking Apps Driving 11,000+ Infections

The Hacker News

Actively Exploited

GoldFactory, a financially motivated cybercriminal group, has launched new attacks targeting mobile users in Southeast Asia, specifically Indonesia, Thailand, and Vietnam. They are distributing modified banking applications that serve as conduits for Android malware, leading to over 11,000 infections since October 2024, posing significant risks to users' financial security.

Impact: Modified banking applications for Android, particularly targeting users in Indonesia, Thailand, and Vietnam.

Remediation: Users are advised to avoid downloading applications from unofficial sources and to verify the authenticity of any banking applications before installation.

Android Malware

6 months ago

Read Original

Google fixes Android vulnerabilities “under targeted exploitation” (CVE-2025-48633, CVE-2025-48572)

Help Net Security

CVE-2025-48633

Actively Exploited

Google has addressed 51 vulnerabilities in Android, including two high-severity flaws (CVE-2025-48633 and CVE-2025-48572) that are potentially under targeted exploitation. Both vulnerabilities impact the Android Framework, which is essential for app development, and could allow malicious applications to access sensitive information.

Impact: Android Framework; potentially all devices running affected versions of Android.

Remediation: Patches have been released to address the vulnerabilities. Users are advised to update their devices to the latest Android version as per the December Android security bulletin.

Android CVE Vulnerability

6 months ago

Read Original

New Albiriox Android Malware Developed by Russian Cybercriminals

SecurityWeek

Albiriox is a new banking trojan developed by Russian cybercriminals, marketed through a malware-as-a-service model for a monthly fee. This malware poses a significant threat to Android users by targeting banking information and financial transactions, highlighting the ongoing risks associated with mobile malware.

Impact: Android devices

Remediation: N/A

Android Malware Trojan

6 months ago

Read Original

Spyware Allows Cyber Threat Actors to Target Users of Messaging Applications

All CISA Advisories

Actively Exploited

CISA has identified that various cyber threat actors are using commercial spyware to target users of mobile messaging applications, employing tactics such as phishing, zero-click exploits, and impersonation. The focus is primarily on high-value individuals including government and military officials, indicating a serious threat to sensitive communications.

Impact: Mobile messaging applications including Signal and WhatsApp.

Remediation: Users are encouraged to review the updated Mobile Communications Best Practice Guidance and Mitigating Cyber Threats with Limited Resources: Guidance for Civil Society for steps to protect mobile communications and messaging apps.

macOS iOS Android Phishing Exploit Update+1 more

6 months ago

Read Original

Google Brings AirDrop Compatibility to Android’s Quick Share Using Rust-Hardened Security

The Hacker News

Google has updated its Quick Share service to enable compatibility with Apple's AirDrop, facilitating easier file sharing between Android and iPhone devices. This feature is currently available for the Pixel 10 lineup and is expected to expand to other devices in the future.

Impact: Pixel 10, iPhone, iPad, macOS

Remediation: N/A

macOS Android

6 months ago

Read Original

New Sturnus Banking Trojan Targets WhatsApp, Telegram, Signal Messages

SecurityWeek

The newly identified Sturnus Banking Trojan is currently under development and primarily targets messaging applications like WhatsApp, Telegram, and Signal, with a focus on users in Europe. This poses a significant risk to user privacy and security as it aims to exploit sensitive communications.

Impact: WhatsApp, Telegram, Signal

Remediation: N/A

Android Exploit Malware Trojan

6 months ago

Read Original

New Sturnus Android Trojan Quietly Captures Encrypted Chats and Hijacks Devices

The Hacker News

The Sturnus Android banking trojan poses a significant threat by enabling credential theft and complete device takeover for financial fraud. Its unique capability to bypass encrypted messaging by capturing decrypted content directly from the device screen raises serious concerns about user privacy and security.

Impact: Android devices

Remediation: Users should ensure their devices are updated with the latest security patches, avoid downloading unverified apps, and consider using additional security measures such as two-factor authentication.

Android Malware Trojan

6 months ago

Read Original

PreviousPage 3 of 3