Reverse Engineering Android React Native application
https://secureitmania.medium.com/lets-know-how-i-have-explored-the-buried-secrets-in-react-native-application-6236728198f7

Vulnerability in Shazam application allowed an attacker to steal location of a user by clicking a link
https://www.ash-king.co.uk/blog/Shazlocate-abusing-CVE-2019-8791-CVE-2019-8792

How to gain access to arbitrary Content Providers
https://blog.oversecured.com/Gaining-access-to-arbitrary-Content-Providers/

A Special Attack Surface of the Android System (1): Evil Dialog Box
https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1351377961017942016

Blowing the Cover of Android Binary Fuzzing
https://speakerdeck.com/flankerhqd/blowing-the-cover-of-android-binary-fuzzing

MobileAudit - performs security testing and malware analysis for Android APKs
https://github.com/mpast/mobileAudit

Analysis of Android Worm that spreads via WhatsApp messages as Huawei Mobile app
https://youtu.be/XXi29noe2NE

Different Android security lock states and their trade-offs
https://www.mayrhofer.eu.org/post/android-tradeoffs-2-lockstates/

Update your iOS!
iOS 0days chain /RCE+LPE/ is being exploited ITW. The fix is available.
https://support.apple.com/en-us/HT212146

Apparently new Android banking Trojan called "Oscorp" spreads in Italy
http://translate.google.com/translate?hl=en&sl=auto&tl=en&u=https%3A%2F%2Fcert-agid.gov.it%2Fnews%2Foscorp-il-solito-malware-per-android%2F

Demo of technique used by Android malware that prevents victim to uninstall it from device (how to fix it)
https://youtu.be/YvfiKPpMoaU

Useful insight on Android's Special App Accesses, since they are treated and mitigated differently as regular app permissions
https://medium.com/mitre-attack/mobile-attack-mitigating-android-abuse-50516fb7de85

Security Fixes and Rewards for Chrome for Android
https://chromereleases.googleblog.com/2020/10/chrome-for-android-update_31.html

Investigation Xoth: Smartphone location tracking
https://www.expressvpn.com/digital-security-lab/investigation-xoth

Reverse Engineering iMessage: Leveraging the Hardware to Protect the Software
https://www.nowsecure.com/blog/2021/01/27/reverse-engineering-imessage-leveraging-the-hardware-to-protect-the-software/

Android Penetration Testing: Frida https://www.hackingarticles.in/android-penetration-testing-frida/

Vulnerability found in Facebook for Android that could trigger malicious deep links, run arbitrary JavaScript or replace URLs to phishing pages
https://ash-king.co.uk/blog/Launching-internal-non-exported-deeplinks-on-Facebook

Reverse engineering Flutter for Android + Doldrums (Doldrums is a reverse engineering tool for Flutter apps)
https://rloura.wordpress.com/2020/12/04/reversing-flutter-for-android-wip/
https://github.com/rscloura/Doldrums

Dissecting a MediaTek BootROM exploit
https://tinyhack.com/2021/01/31/dissecting-a-mediatek-bootrom-exploit/

Data Driven Security Hardening in Android
https://security.googleblog.com/2021/01/data-driven-security-hardening-in.html

Hackers tried to trick iPhone users into installing a fake version of WhatsApp to spy on them.
How: By tricking users into installing configuration files or so-called Mobile Device Management (MDM) profiles, which can then potentially push malware onto a target device.
https://www.vice.com/en/article/akdqwa/a-spyware-vendor-seemingly-made-a-fake-whatsapp-to-hack-targets