We came across the tweet of an Android malware sample, a banking trojan that mainly targets Peru banks by […]

A new campaign is targeting Android & Windows with multiple Trojans using Zombinder: a thirdparty service to infect a legitimate app with malicious payload

Web Explorer – Fast Internet left an open instance, exposing a trove of sensitive data that malicious actors could use to check specific users’ browsing history.

Frida noscript to bypass common methods of sslpining Android - mixunpin.js

Makes reverse engineering Android apps easier, automating repetitive tasks like pulling, decoding, rebuilding and patching an APK. - ax/apk.sh

ThreatFabric’s analysts discovered a multi-platform banking malware campaign targeting Brazil, reaching thousands of victims.

The Zimperium zLabs team recently discovered a Flutter application with malicious code. The Flutter-obfuscated malware campaign, MoneyMonger, is solely distributed through third-party app stores and sideloaded onto the victim’s Android device. Read more to…

The Godfather malware is back, specifically targeting banking users. Learn how this threat works and what steps you can take to protect your online banking security.

I was recently rewarded a total of $107,500 by Google for responsibly disclosing security issues in the Google Home smart speaker that allowed an attacker within wireless proximity to install a "backdoor" account on the device, enabling them to send commands…

Quick tutorial how to run Wireshark on rooted Android with help of Kali NetHunter.

This article explains how to install Android Studio and set up the Android emulator to proxy its traffic through Burp Suite. This lets you monitor traffic from Android apps.

SeaGlass is a system designed by security researchers at the University of Washington to measure IMSI-catcher use across a city.     Cellular sensors are built from off-the-shelf parts and installed into volunteers’ vehicles Sensor data is continuously uploaded…

CTI, threat intelligence, OSINT, malware, APT, threat hunting, threat analysis, CTF, cybersecurity, security

SpyNote, also known as SpyMax and CypherRat, is a unique and effective Spyware which developed unique interest in banking users

ESET researchers uncover an active StrongPity campaign that spreads a trojanized version of the Android Telegram app posing as the Shagle video chat app.