Re-route Your Intent for Privilege Escalation: A Universal Way to Exploit Android PendingIntents in High-profile and System Apps [slides]
https://www.blackhat.com/eu-21/briefings/schedule/index.html#re-route-your-intent-for-privilege-escalation-a-universal-way-to-exploit-android-pendingintents-in-high-profile-and-system-apps-24340
https://www.blackhat.com/eu-21/briefings/schedule/index.html#re-route-your-intent-for-privilege-escalation-a-universal-way-to-exploit-android-pendingintents-in-high-profile-and-system-apps-24340
Blackhat
Black Hat Europe 2021
A Deep Dive into Privacy Dashboard of Top Android Vendors [slides]
https://www.blackhat.com/eu-21/briefings/schedule/index.html#a-deep-dive-into-privacy-dashboard-of-top-android-vendors-24791
https://www.blackhat.com/eu-21/briefings/schedule/index.html#a-deep-dive-into-privacy-dashboard-of-top-android-vendors-24791
Blackhat
Black Hat Europe 2021
SharkBot: a new generation of Android Trojans is targeting banks in Europe
https://www.cleafy.com/cleafy-labs/sharkbot-a-new-generation-of-android-trojan-is-targeting-banks-in-europe
https://www.cleafy.com/cleafy-labs/sharkbot-a-new-generation-of-android-trojan-is-targeting-banks-in-europe
Cleafy
SharkBot: a new generation of Android Trojans is targeting banks in Europe | Cleafy Labs
SharkBot: a new generation of Android Trojans is targeting European banks. It has been discovered by the threat intelligence team of Cleafy: here's the technical analysis.
👍1
Mobile malware mimicking framework #blackhat
https://maxkersten.nl/wp-content/uploads/2021/11/BHEU21_m3.pdf
https://maxkersten.nl/wp-content/uploads/2021/11/BHEU21_m3.pdf
Armv8 / AArch64 Assembly Cheatsheet
https://azeria.gumroad.com/l/aarch64-cheatsheet
https://azeria.gumroad.com/l/aarch64-cheatsheet
Gumroad
Armv8-A AArch64 Cheatsheet 2021
Brand-new Armv8-A AArch64 Assembly Cheatsheet! Resolution for 2880 x 1800 screens (MacBook) at 150 PPI (6000 x 3750).Free download (you can set price to $0, then download) since it's the first vers...
Remotely and permanent crash of Mapillary Android app #DoS #Facebook
https://pathleax.medium.com/this-is-how-i-was-able-to-permanently-crash-all-mapillary-users-within-minutes-c7276def5a94
https://pathleax.medium.com/this-is-how-i-was-able-to-permanently-crash-all-mapillary-users-within-minutes-c7276def5a94
Medium
This is how i was able to Permanently Crash all Mapillary users within minutes
Hello everyone! Myself Abhishek Pathak from Gorakhpur, Uttar Pradesh, I’m 17 years old. This is my first Bug Bounty from Facebook Social…
How to Write Frida Hook For Android
https://github.com/cyberheartmi9/Frida-Guide/blob/main/Frida%20Guide/Frida%20Guide.md
https://github.com/cyberheartmi9/Frida-Guide/blob/main/Frida%20Guide/Frida%20Guide.md
GitHub
Frida-Guide/Frida Guide/Frida Guide.md at main · cyberheartmi9/Frida-Guide
This repository explain how to write frida hook noscripts and analysis written hooks. - cyberheartmi9/Frida-Guide
How to compile QEMU support to AFL++ on Android #fuzzing
https://alephsecurity.com/2021/11/16/fuzzing-qemu-android/
https://alephsecurity.com/2021/11/16/fuzzing-qemu-android/
Alephsecurity
AFL++ on Android with QEMU support
BrazKing Android Malware Upgraded and Targeting Brazilian Banks
https://securityintelligence.com/posts/brazking-android-malware-upgraded-targeting-brazilian-banks/
https://securityintelligence.com/posts/brazking-android-malware-upgraded-targeting-brazilian-banks/
Security Intelligence
BrazKing Android Malware Upgraded and Targeting Brazilian Banks
IBM Trusteer researchers found the BrazKing Android malware has new tactics. See how it infects and hides in phones that use Brazilian banking apps.
What can a cyber criminal learn about you using your mobile number?
https://www.proofpoint.com/us/blog/email-and-cloud-threats/what-can-cyber-criminal-learn-about-you-using-your-mobile-number
https://www.proofpoint.com/us/blog/email-and-cloud-threats/what-can-cyber-criminal-learn-about-you-using-your-mobile-number
Proofpoint
What can a cyber criminal learn about you using your mobile number? | Proofpoint US
Your digits are the key to unlocking a huge amount of freely available personal information.
New version of JADX 1.3.0 decompiler has been released
https://github.com/skylot/jadx/releases
https://github.com/skylot/jadx/releases
GitHub
Releases · skylot/jadx
Dex to Java decompiler. Contribute to skylot/jadx development by creating an account on GitHub.
Reverse engineering & modifying Android apps with JADX & Frida
https://httptoolkit.tech/blog/android-reverse-engineering/
https://httptoolkit.tech/blog/android-reverse-engineering/
Httptoolkit
Reverse engineering & modifying Android apps with JADX & Frida
I get a lot of emails from users who want to know exactly what their favourite Android app is doing, and want to tweak and change how that works for...
👍1
Keybase App Vulnerability: Incomplete Cleanup of Messages In Keybase for Android/iOS, CVE-2021-34421
https://www.oliviaohara.com/keybase
https://www.oliviaohara.com/keybase
OLIVIA O'HARA
CVE-2022-22779: Retained Exploded Messages in Keybase Clients for macOS and Windows — OLIVIA O'HARA
In Keybase desktop versions before 5.9.0, users can retain "exploded" messages with a few clever clicks, meaning your sensitive chats may be read after you want them gone.
New trojan detected in 190 games on AppGallery app catalog
https://news.drweb.com/show/?i=14360&lng=en&c=5
https://news.drweb.com/show/?i=14360&lng=en&c=5
Dr.Web
New trojan detected on AppGallery app catalog
Doctor Web malware analysts discovered dozens of games on the AppGallery catalog that have an <a href="https://vms.drweb.com/search/?q=Android.Cynos.7.origin&lng=en"><b>Android.Cynos.7.origin</b></a> trojan built into them. This trojan is designed to collect…
Android APT spyware, targeting Middle East victims, enhances evasiveness
https://news.sophos.com/en-us/2021/11/23/android-apt-spyware-targeting-middle-east-victims-improves-its-capabilities/
https://news.sophos.com/en-us/2021/11/23/android-apt-spyware-targeting-middle-east-victims-improves-its-capabilities/
Sophos News
Android APT spyware, targeting Middle East victims, enhances evasiveness
The phone spyware has new features that confer resistance to takedowns or manual removal
Apple sues spyware firm NSO Group
https://www.apple.com/newsroom/2021/11/apple-sues-nso-group-to-curb-the-abuse-of-state-sponsored-spyware/
https://www.apple.com/newsroom/2021/11/apple-sues-nso-group-to-curb-the-abuse-of-state-sponsored-spyware/
Apple Newsroom
Apple sues NSO Group to curb the abuse of state-sponsored spyware
Apple today filed a lawsuit against NSO Group to hold it accountable for abusive surveillance and the targeting of a small number of Apple users.
Bugs discovered in MediaTek chips affect 37% of smartphones and IoT devices
https://research.checkpoint.com/2021/looking-for-vulnerabilities-in-mediatek-audio-dsp/
https://research.checkpoint.com/2021/looking-for-vulnerabilities-in-mediatek-audio-dsp/
Check Point Research
Looking for vulnerabilities in MediaTek audio DSP - Check Point Research
Research By: Slava Makkaveev Introduction Taiwan’s MediaTek has been the global smartphone chip leader since Q3 2020. MediaTek Systems on a chip (SoCs) are embedded in approximately 37% of all smartphones and IoT devices in the world, including high-end phones…
👍1😁1
Root shell vulnerability found in OnePlus Nord 2 It grants root shell access within minutes on a locked bootloader, without a data wipe
https://www.xda-developers.com/oneplus-nord-2-vulnerability-root-shell/
https://www.xda-developers.com/oneplus-nord-2-vulnerability-root-shell/
XDA
OnePlus Nord 2 has a vulnerability that grants root shell access within minutes on a locked bootloader, without a data wipe
The OnePlus Nord 2 has a vulnerability that allows an attacker to get unrestricted root shell access. Read on to know more!